UPDATE: (Thur, Feb 6, 2014) I'd like to thank everyone for being patient. As mentioned earlier, OpenVMS.org is being ported to a new content management system. Due to the enormous amount of data, 13 years worth in the database, it's taking longer than anticipated. We're hoping the new site will be up and running within the next couple of weeks. Bare with us, it's been a colossal task! -Ken Farmer
HP TCP/IP Services vulnerabilties and fixes
Posted by Ian on Tuesday September 23 2008 @ 03:49AM EDT
HP have posted information and fixes for the finger service and cache poisoning vulnerabilities which have been reported for recent versions of the HP TCP/IP Services for OpenVMS product
The finger software has a vulnerability only when the service is enabled, which it often is not.
Some HP TCP/IP versions contain a DNS cache poisoning vulnerability. If your system is not acting as a nameserver you do not need the updated images.