HP-UX Security Vulnerabilities

CVE-1999-0057

Vacation program allows command execution by remote users through a sendmail...

CVE-1999-0779

Denial of service in HP-UX SharedX recserv...

CVE-1999-0333

HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink...

CVE-1999-1136

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive...

CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd...

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server...

CVE-1999-0502

A Unix account has a default, null, blank, or missing...

CVE-1999-0014

Unauthorized privileged access or denial of service via dtappgather program in...

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of...

CVE-1999-0015

Teardrop IP denial of...

CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a....

CVE-1999-0016

Land IP denial of...

CVE-1999-0216

Denial of service of inetd on Linux through SYN and RST...

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe...

CVE-1999-0326

Vulnerability in HP-UX mediainit...

CVE-1999-1213

Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of...

CVE-1999-1133

HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate...

CVE-1999-1139

Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty...

CVE-1999-0524

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary...

CVE-1999-1308

Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain...

CVE-1999-0962

Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line...

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root...

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as...

CVE-1999-1408

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on...

CVE-1999-0318

Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental...

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental...

CVE-1999-1160

Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root...

CVE-1999-0309

HP-UX vgdisplay program gives root access to local...

CVE-1999-1144

Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain...

CVE-1999-1088

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain...

CVE-1999-1311

Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain...

CVE-1999-1145

Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain...

CVE-1999-1249

movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain...

CVE-1999-0517

An SNMP community name is the default (e.g. public), null, or...

CVE-1999-1251

Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of...

CVE-1999-0127

swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root...

CVE-1999-1089

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line...

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include:...

CVE-1999-0050

Buffer overflow in HP-UX newgrp...

CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root...

CVE-1999-1161

Vulnerability in ppl in HP-UX 10.x and earlier allows local users to gain root privileges by forcing ppl to core...

CVE-1999-0311

fpkg2swpk in HP-UX allows local users to gain root...

CVE-1999-0336

Buffer overflow in mstm in HP-UX allows local users to gain root...

CVE-1999-0246

HP Remote Watch allows a remote user to gain root...

CVE-1999-0308

HP-UX gwind program allows users to modify arbitrary...

CVE-1999-0961

HPUX sysdiag allows local users to gain root privileges via a symlink attack during log file...

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local...

CVE-1999-0324

ppl program in HP-UX allows local users to create root files through...

CVE-1999-0132

Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root...

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr()...