Filtered by vendor Hp
Subscribe
Total
2415 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1668 | 1 Hp | 3 Hp-ux, Hp-ux Series 700, Hp-ux Series 800 | 2023-12-10 | 2.1 LOW | N/A |
HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to a "file system weakness" that is possibly via an mmap() system call and performing an I/O operation using data from the mapped buffer on the file descriptor for the mapped file. | |||||
CVE-1999-0324 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
ppl program in HP-UX allows local users to create root files through symlinks. | |||||
CVE-2002-1614 | 1 Hp | 2 Hp-ux, Tru64 | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at. | |||||
CVE-2001-0979 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument. | |||||
CVE-2000-1028 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument. | |||||
CVE-2003-1461 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability (CVE-2002-1473). | |||||
CVE-2000-0077 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands. | |||||
CVE-2000-0005 | 1 Hp | 3 9000, Aserver, Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
HP-UX aserver program allows local users to gain privileges via a symlink attack. | |||||
CVE-2002-1856 | 1 Hp | 1 Application Server | 2023-12-10 | 5.0 MEDIUM | N/A |
HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | |||||
CVE-2002-1317 | 4 Hp, Sgi, Sun and 1 more | 5 Hp-ux, Irix, Solaris and 2 more | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query. | |||||
CVE-2002-0638 | 3 Hp, Mandrakesoft, Redhat | 5 Secure Os, Mandrake Linux, Mandrake Linux Corporate Server and 2 more | 2023-12-10 | 6.2 MEDIUM | N/A |
setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh. | |||||
CVE-1999-1061 | 1 Hp | 1 Jetdirect | 2023-12-10 | 7.5 HIGH | N/A |
HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect to the printer and change its IP address or disable logging. | |||||
CVE-2003-0221 | 1 Hp | 1 Tru64 | 2023-12-10 | 7.2 HIGH | N/A |
The (1) dupatch and (2) setld utilities in HP Tru64 UNIX 5.1B PK1 and earlier allows local users to overwrite files and possibly gain root privileges via a symlink attack. | |||||
CVE-2002-1999 | 1 Hp | 1 Praesidium Webproxy | 2023-12-10 | 5.0 MEDIUM | N/A |
HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests. | |||||
CVE-2002-0529 | 1 Hp | 1 Photosmart Print Driver | 2023-12-10 | 6.2 MEDIUM | N/A |
HP Photosmart printer driver for Mac OS X installs the hp_imaging_connectivity program and the hp_imaging_connectivity.app directory with world-writable permissions, which allows local users to gain privileges of other Photosmart users by replacing hp_imaging_connectivity with a Trojan horse. | |||||
CVE-1999-0336 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in mstm in HP-UX allows local users to gain root access. | |||||
CVE-2002-1794 | 1 Hp | 2 Hp-ux, Ldap-ux Integration | 2023-12-10 | 10.0 HIGH | N/A |
Unknown vulnerability in pam_authz in the LDAP-UX Integration product on HP-UX 11.00 and 11.11 allows remote attackers to execute r-commands with privileges of other users. | |||||
CVE-2000-1058 | 1 Hp | 1 Openview Network Node Manager | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem." | |||||
CVE-1999-1133 | 1 Hp | 1 Hp-ux | 2023-12-10 | 4.6 MEDIUM | N/A |
HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users. | |||||
CVE-2003-1494 | 1 Hp | 1 Openview Network Node Manager | 2023-12-10 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (CPU consumption) via a crafted TCP packet. |