CVE-2007-0139

high HPE
CVSS v3 Base Score
7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
1.0%
Exploitation probability in 30 days
Top 23% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: January 9, 2007 (7065 days ago)
Last Modified: April 23, 2026
Vendor: HPE
Source: NVD

Description

Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "unintended privileged access to data and system resources" via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM.

CWE

NVD-CWE-Other

Affected Products

hp openvms

References

🔗 ftp.itrc.hp.com 🔗 ftp.itrc.hp.com 🔗 osvdb.org 🔗 osvdb.org 🔗 osvdb.org