32 matches found
EUVD-2001-0961
Malware in sbrugna...
EUVD-2000-0512
Malware in sbrugna...
EUVD-1999-1117
Malware in sbrugna...
EUVD-2003-1364
Malware in sbrugna...
EUVD-2003-1451
Malware in sbrugna...
HP-UX 11 Software Distributor Lang Environment Variable Local Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8986/info HP has reported that some Software Distributor SD utilities are prone to a locally exploitable buffer-overrun vulnerability. Affected utilities include swinstall1M and swverify1M. / Program : xhpux11isw.c Use :...
CVE-2003-1461
Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability CVE-2002-1473...
CVE-2003-1374
Technical details about CVE-2003-1374 are not provided in the connected documents. The sources mainly restate the buffer overflow description without specifics on affected versions, root cause, or fixes. Monitor for updates.
CVE-2003-1374
Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the 1 -r or 2-c options...
Design/Logic Flaw
Unspecified vulnerability in Hitachi TP1/Server Base before 03-05-/P, 05-00-x before 05-00-/G, 05-01-x before 05-01-/A, and 05-02-x before 05-02-/C on HP-UX 11.0 through 11i v3 allows attackers to cause a denial of service by sending certain data to a port...
CVE-2003-1374
Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the 1 -r or 2-c options...
HP-UX 11.0 /usr/bin/kermit
Hi! There are many buffer overflows in kermit on HP-UX 11.0 . I am sure it is vulnerable in other HP-UX versions, too, since "C-Kermit 6.0.192, 6 Sep 96, for HP-UX 10.00" is installed in HP-UX 11.0 by default. /usr/bin/kermit is setuid to bin and setgrp to daemon, so upon succesfull exploitation,...
HP-UX 11.0/11.11 - 'swxxx' Privilege Escalation
/ Program : xhpux11isw.c Use : HP-UX 11.11/11.0 exploit swxxx to get local root shell. Complie : cc xhpux11isw.c -o xsw;./xsw not use gcc for some system Usage : ./xsw off Tested : HP-UX B11.11 & HP-UX B11.0 Author : watercloud @ xfocus.org Date : 2002-12-11 Note : Use as your own risk !! / inclu...
CVE-1999-1136
CVE-1999-1136 affects Predictive on HP-UX (11.0 and earlier) and MPE/iX (5.5 and earlier). The underlying issue is in the traffic used for Predictive messages (via e-mail or modem) between customer machines and Response Center Predictive systems, which can allow an attacker to compromise data tra...
CVE-1999-1139
CVE-1999-1139 describes a local privilege escalation in HP-UX 11.0 and earlier via a symlink attack on IOERROR.mytty, allowing local users to overwrite arbitrary files and gain root privileges. Affected component is HP-UX system tooling related to Character-Terminal User Environment (CUE). The co...
CVE-2001-0979
CVE-2001-0979 describes a buffer overflow in HP-UX SD-UX component SWVERIFY on HP-UX 11.00 (and likely other HP-UX releases) that enables a local user to gain elevated privileges via a long command line argument. The vulnerability is associated with a local-authenticated attack vector and complet...
CVE-2001-0979
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument...
CVE-2001-0809
The CVE-2001-0809 issue affects HP-UX 11.0/11.11 CIFS/9000 Server (SAMBA) prior to patch A.01.06. When configured as a print server, local users can overwrite arbitrary files by modifying certain resources. The vulnerability is documented in HP patch PHNE_24164 (A.01.06) for s700/s800 11.X CIFS/9...
CVE-2001-0979
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument...
CVE-2001-0085
No connected documents with concrete technical details were found for CVE-2001-0085. The Initial Description notes a buffer overflow in HP-UX Kermit (HP-UX 11.0 and earlier), but no additional technical specifics are provided in the connected documents. Monitor for updates.