Total
465 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-0677 | 7 Caldera, Compaq, Hp and 4 more | 9 Openunix, Unixware, Tru64 and 6 more | 2023-12-10 | 7.5 HIGH | N/A |
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | |||||
CVE-2002-1473 | 1 Hp | 1 Hp-ux | 2023-12-10 | 4.6 MEDIUM | N/A |
Multiple buffer overflows in lp subsystem for HP-UX 10.20 through 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2003-1359 | 2 Avaya, Hp | 2 Predictive Dialer System, Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument. | |||||
CVE-2003-1099 | 1 Hp | 1 Hp-ux | 2023-12-10 | 2.1 LOW | N/A |
shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | |||||
CVE-2003-1356 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors. | |||||
CVE-2002-1611 | 1 Hp | 2 Hp-ux, Tru64 | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. | |||||
CVE-2001-1264 | 1 Hp | 2 Hp-ux, Vvos | 2023-12-10 | 10.0 HIGH | N/A |
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | |||||
CVE-1999-0008 | 2 Hp, Sun | 3 Hp-ux, Solaris, Sunos | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in NIS+, in Sun's rpc.nisd program. | |||||
CVE-2002-2270 | 1 Hp | 1 Hp-ux | 2023-12-10 | 3.6 LOW | N/A |
Unspecified vulnerability in the ied command in HP-UX 10.10, 10.20, and 11.0 allows local users to view "normally invisible data" via unknown attack vectors. | |||||
CVE-1999-0104 | 4 Caldera, Hp, Microsoft and 1 more | 5 Openlinux, Hp-ux, Windows 95 and 2 more | 2023-12-10 | 5.0 MEDIUM | N/A |
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. | |||||
CVE-2002-2263 | 1 Hp | 2 Hp-ux, Visualize Conference Ftp | 2023-12-10 | 6.6 MEDIUM | N/A |
The installation program for HP-UX Visualize Conference B.11.00.11 running on HP-UX 11.00 and 11.11 installs /etc/dt and its subdirecties with insecure permissions, which allows local users to read or write arbitrary files. | |||||
CVE-2003-1097 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. | |||||
CVE-1999-0312 | 1 Hp | 1 Hp-ux | 2023-12-10 | 5.0 MEDIUM | N/A |
HP ypbind allows attackers with root privileges to modify NIS data. | |||||
CVE-2001-1182 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in login in HP-UX 11.00, 11.11, and 10.20 allows restricted shell users to bypass certain security checks and gain privileges. | |||||
CVE-2004-0952 | 1 Hp | 1 Hp-ux | 2023-12-10 | 6.4 MEDIUM | N/A |
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption. | |||||
CVE-2002-1606 | 1 Hp | 2 Hp-ux, Tru64 | 2023-12-10 | 4.6 MEDIUM | N/A |
Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm. | |||||
CVE-1999-0479 | 2 Hp, Netscape | 2 Hp-ux, Enterprise Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. | |||||
CVE-2002-0679 | 6 Caldera, Compaq, Hp and 3 more | 8 Openunix, Unixware, Tru64 and 5 more | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure. | |||||
CVE-2003-0028 | 10 Cray, Freebsd, Gnu and 7 more | 13 Unicos, Freebsd, Glibc and 10 more | 2023-12-10 | 7.5 HIGH | N/A |
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391. | |||||
CVE-1999-0097 | 3 Hp, Ibm, Sun | 4 Hp-ux, Aix, Solaris and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). |