CVE-2002-2071

Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in 1 telnet, 2 FTP, 3 ypbind, 4 rpc.lockd, 5 snmp, 6 ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap...

CVE-2002-2003

ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap...

CVE-2002-2004

portmapper in Compaq Tru64 4.0G and 5.0A allows remote attackers to cause a denial of service via a flood of packets...

CVE-2002-0883

Vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10, allows authenticated users with Telnet, SSH, or console access to conduct unauthorized activities...

CVE-2002-1127

Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long source -s command line parameter...

CVE-2002-1128

Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable...

CVE-2002-1134

Unknown vulnerability in Compaq WEBES Service Tools 2.0 through WEBES 4.0 Service Pack 5 allows local users to read privileged files...

CVE-2002-1127

CVE-2002-1127: Buffer overflow in uucp for Compaq Tru64/OSF1 3.x enables local users to execute arbitrary code via a long source (-s) argument. Root cause: unchecked buffer handling in uucp. Affected: Tru64/OSF1 3.x; component: uucp. Impact: local code execution; data confidentiality/integrity/av...

CVE-2002-1127

Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long source -s command line parameter...

CVE-2002-1134

Affected software: Compaq WEBES Service Tools 2.0 through WEBES 4.0 (Service Pack 5). Description indicates an unknown vulnerability that allows local users to read privileged files. The provided documents do not specify the root cause, affected components beyond the program scope, exploit detail...

CVE-2002-1134

Unknown vulnerability in Compaq WEBES Service Tools 2.0 through WEBES 4.0 Service Pack 5 allows local users to read privileged files...

CVE-2002-1128

Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable...

CVE-2002-1128

Technical details about CVE-2002-1128 are not publicly available in the provided connected documents; available sources reiterate a buffer overflow in the inc mail utility for Compaq Tru64/OSF1 3.x via a long MH environment variable.

HP Compaq Insight Manager - Web Interface Cross-Site Scripting

HP Compaq Insight Manager - Web Interface Cross-Site Scripting source: https://www.securityfocus.com/bid/5780/info It has been reported that the Compaq Insight Manager web interface is prone to cross-site scripting attacks. It is possible to construct a malicious link to a Compaq Insight Manager...

HP Compaq Insight Manager - Web Interface Cross-Site Scripting

source: https://www.securityfocus.com/bid/5780/info It has been reported that the Compaq Insight Manager web interface is prone to cross-site scripting attacks. It is possible to construct a malicious link to a Compaq Insight Manager web interface that includes arbitrary script code. When the lin...

TRU64 formal disclosure from Snosoft.

====================================================================== Strategic Reconnaissance Team Security AdvisorySRT2002-09 Topic: Compaq Tru64 Unix Mulitple Buffer Overflows Vendor: HP/Compaq Release Date: 09/04/2002 Author: [email protected] Primary Research by: [email protected]...

Happy Labor Day from Snosoft

For your reading pleasure I have attached some of the communication between myself and CERT regarding the issues recently released at: ftp://ftp1.support.compaq.com/public/unix/v5.1/T64V51B19-C0136901-15143-ES-20020817.txt We are in the process of making our formal advisories out of these...

CVE-2002-0883

Vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10, allows authenticated users with Telnet, SSH, or console access to conduct unauthorized activities...

CVE-2002-0883

The CVE-2002-0883 entry describes a vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10. Authenticated users with Telnet, SSH, or console access can perform unauthorized activities, with full impact on confidentiality, integrity, and availability per CVSS v2. No expl...

CVE-2002-0812

Information leak in Compaq WL310, and the Orinoco Residential Gateway access point it is based on, uses a system identification string as a default SNMP read/write community string, which allows remote attackers to obtain and modify sensitive configuration information by querying for the...