CVE-2008-3946 Information

Description

The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files via a link corresponding to a (1) .plan or (2) .project file.

Reference

http://deathrow.vistech.net/DEFCON16/VMS.PDF https://exchange.xforce.ibmcloud.com/vulnerabilities/45135