Filtered by vendor Hp
Subscribe
Total
2415 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-1564 | 1 Hp | 1 Hp-ux | 2023-12-10 | 2.1 LOW | N/A |
setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space. | |||||
CVE-2002-1605 | 1 Hp | 2 Hp-ux, Tru64 | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession. | |||||
CVE-2003-1087 | 1 Hp | 1 Hp-ux | 2023-12-10 | 5.0 MEDIUM | N/A |
Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic. | |||||
CVE-2002-0677 | 7 Caldera, Compaq, Hp and 4 more | 9 Openunix, Unixware, Tru64 and 6 more | 2023-12-10 | 7.5 HIGH | N/A |
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | |||||
CVE-2002-1473 | 1 Hp | 1 Hp-ux | 2023-12-10 | 4.6 MEDIUM | N/A |
Multiple buffer overflows in lp subsystem for HP-UX 10.20 through 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2003-1359 | 2 Avaya, Hp | 2 Predictive Dialer System, Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument. | |||||
CVE-2003-1099 | 1 Hp | 1 Hp-ux | 2023-12-10 | 2.1 LOW | N/A |
shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | |||||
CVE-2003-1495 | 1 Hp | 3 Insight Management Suite, Insight Manager, Remote Diagnostics Enabling Agent | 2023-12-10 | 10.0 HIGH | N/A |
Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors. | |||||
CVE-2003-1356 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors. | |||||
CVE-2002-1318 | 3 Hp, Samba, Sgi | 3 Cifs-9000 Server, Samba, Irix | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string. | |||||
CVE-2002-1611 | 1 Hp | 2 Hp-ux, Tru64 | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. | |||||
CVE-2001-1264 | 1 Hp | 2 Hp-ux, Vvos | 2023-12-10 | 10.0 HIGH | N/A |
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | |||||
CVE-1999-0008 | 2 Hp, Sun | 3 Hp-ux, Solaris, Sunos | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in NIS+, in Sun's rpc.nisd program. | |||||
CVE-2002-2270 | 1 Hp | 1 Hp-ux | 2023-12-10 | 3.6 LOW | N/A |
Unspecified vulnerability in the ied command in HP-UX 10.10, 10.20, and 11.0 allows local users to view "normally invisible data" via unknown attack vectors. | |||||
CVE-1999-0104 | 4 Caldera, Hp, Microsoft and 1 more | 5 Openlinux, Hp-ux, Windows 95 and 2 more | 2023-12-10 | 5.0 MEDIUM | N/A |
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. | |||||
CVE-2002-2263 | 1 Hp | 2 Hp-ux, Visualize Conference Ftp | 2023-12-10 | 6.6 MEDIUM | N/A |
The installation program for HP-UX Visualize Conference B.11.00.11 running on HP-UX 11.00 and 11.11 installs /etc/dt and its subdirecties with insecure permissions, which allows local users to read or write arbitrary files. | |||||
CVE-2003-1097 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. | |||||
CVE-1999-0312 | 1 Hp | 1 Hp-ux | 2023-12-10 | 5.0 MEDIUM | N/A |
HP ypbind allows attackers with root privileges to modify NIS data. | |||||
CVE-2001-1182 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in login in HP-UX 11.00, 11.11, and 10.20 allows restricted shell users to bypass certain security checks and gain privileges. | |||||
CVE-2004-0952 | 1 Hp | 1 Hp-ux | 2023-12-10 | 6.4 MEDIUM | N/A |
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption. |