Lucene search

Tru64 Security Vulnerabilities - January

cve

CVE-2001-1033

Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a system that does not have a DNS PTR record, which causes the cluster to enter a "split-brain" state.

7AI Score

0.01EPSS

2002-02-02 05:00 AM

cve

CVE-2001-1092

msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink attack on the .mh_profile file.

6.2AI Score

0.0004EPSS

2002-03-15 05:00 AM

cve

CVE-2001-1093

Buffer overflow in msgchk in Digital UNIX 4.0G and earlier allows local users to execute arbitrary code via a long command line argument.

7.5AI Score

0.0004EPSS

2002-03-15 05:00 AM

cve

CVE-2001-1435

inetd in Compaq Tru64 UNIX 5.1 allows attackers to cause a denial of service (network connection loss) by causing one of the services handled by inetd to core dump during startup, which causes inetd to stop accepting connections to all of its services.

6.8AI Score

0.004EPSS

2005-04-21 04:00 AM

cve

CVE-2002-0093

Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423.

7.5AI Score

0.001EPSS

2002-09-05 04:00 AM

cve

CVE-2002-0677

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

6.8AI Score

0.008EPSS

2002-07-23 04:00 AM

cve

CVE-2002-0678

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

6.2AI Score

0.011EPSS

2003-04-02 05:00 AM

cve

CVE-2002-0679

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.

7.9AI Score

0.017EPSS

2003-04-02 05:00 AM

cve

CVE-2002-0816

Buffer overflow in su in Tru64 Unix 5.x allows local users to gain root privileges via a long username and argument.

6.8AI Score

0.0004EPSS

2003-04-02 05:00 AM

cve

CVE-2002-1129

Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument.

7.8AI Score

0.0004EPSS

2002-10-04 04:00 AM

cve

CVE-2002-1202

Unknown vulnerability in routed for HP Tru64 UNIX V4.0F through V5.1A allows local and remote attackers to read arbitrary files.

7AI Score

0.008EPSS

2002-10-28 05:00 AM

cve

CVE-2002-2002

Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables.

8.2AI Score

0.008EPSS

2005-07-14 04:00 AM

cve

CVE-2002-2003

ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap.

7AI Score

0.005EPSS

2005-07-14 04:00 AM

cve

CVE-2002-2004

portmapper in Compaq Tru64 4.0G and 5.0A allows remote attackers to cause a denial of service via a flood of packets.

7AI Score

0.003EPSS

2005-07-14 04:00 AM

cve

CVE-2002-2071

Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap.

7.1AI Score

0.031EPSS

2005-07-14 04:00 AM

cve

CVE-2003-0161

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers...

7.6AI Score

0.892EPSS

2003-04-02 05:00 AM

cve

CVE-2003-0196

Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.

7.6AI Score

0.971EPSS

2003-05-05 04:00 AM

cve

CVE-2003-0201

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.

7.3AI Score

0.971EPSS

2003-05-05 04:00 AM

cve

CVE-2003-0688

The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect data.

6.7AI Score

0.129EPSS

2003-10-20 04:00 AM

cve

CVE-2003-0694

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

7.7AI Score

0.052EPSS

2003-10-06 04:00 AM

cve

CVE-2003-0724

ssh on HP Tru64 UNIX 5.1B and 5.1A does not properly handle RSA signatures when digital certificates and RSA keys are used, which could allow local and remote attackers to gain privileges.

7.2AI Score

0.003EPSS

2003-10-20 04:00 AM

cve

CVE-2003-0914

ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.

6.2AI Score

0.02EPSS

2003-12-15 05:00 AM

cve

CVE-2005-0223

The Software Development Kit (SDK) and Run Time Environment (RTE) 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service (Java Virtual Machine hang) via object deserialization.

7AI Score

0.005EPSS

2005-05-02 04:00 AM