HP have posted information about and fixes for the finger service and
cache poisoning vulnerabilities.

http://www.openvms.org/stories.php?s.../09/23/6145507