Stack-based Buffer Overflow in HP OpenVMS MultiNet Finger Service
CVE-2008-5120

Currently unrated

Key Information:

Vendor: HP
Status: Openvms
Vendor: CVE Published:; 18 November 2008

Summary

A stack-based buffer overflow exists in the process software MultiNet finger service for HP OpenVMS 8.3. This vulnerability enables remote attackers to exploit the system by sending a specially crafted request, potentially leading to arbitrary code execution. Attackers may exploit this flaw to gain unauthorized access or control over vulnerable systems, posing a significant security threat. It is crucial for users of the affected product to apply necessary mitigations and updates to safeguard against such vulnerabilities.

References

http://www.securityfocus.com/archive/1/495207/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securityreason.com/securityalert/4602

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/bid/30589

vdb-entryx_refsource_BID

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 18, 2008
Vulnerability Reserved
Nov 17, 2008