Local user gains root privileges via buffer overflow in rdist, via expstr() function.
7.8CVSS
7.4AI Score
0.001EPSS
8.4CVSS
7.9AI Score
0.0004EPSS
7.2AI Score
0.0004EPSS
rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.
6.7AI Score
0.004EPSS
6.6AI Score
0.0004EPSS
MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.
6.6AI Score
0.0004EPSS
Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges.
6.5AI Score
0.0004EPSS
Local users can gain privileges using the debug utility in the MPE/iX operating system.
7.2AI Score
0.0004EPSS
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems.
7AI Score
0.018EPSS
6.6AI Score
0.018EPSS
Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.
6.9AI Score
0.001EPSS
7.1AI Score
0.0004EPSS
7AI Score
0.0004EPSS
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
6.8AI Score
0.0004EPSS
6.9AI Score
0.007EPSS
The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization.
6.8AI Score
0.008EPSS
7AI Score
0.002EPSS
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).
7AI Score
0.012EPSS
Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor (SSP) Teststation.
7.3AI Score
0.01EPSS
Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges.
7.2AI Score
0.0004EPSS
VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which makes it easier for attackers to conduct brute force password guessing.
9.8CVSS
7.2AI Score
0.003EPSS
Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.
7.1AI Score
0.01EPSS
6.9AI Score
0.0004EPSS
The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.
7AI Score
0.0004EPSS
The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.
7AI Score
0.0004EPSS
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.
6.8AI Score
0.0004EPSS
The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.
7AI Score
0.003EPSS
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
7.3AI Score
0.017EPSS
HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555.
7AI Score
0.038EPSS
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.
7AI Score
0.002EPSS
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.
7.1AI Score
0.0004EPSS
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
7.1AI Score
0.078EPSS
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.
7AI Score
0.013EPSS
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
6.7AI Score
0.0004EPSS
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
6.9AI Score
0.01EPSS
Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.
8.3AI Score
0.005EPSS
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
7.5AI Score
0.97EPSS
Vulnerability in HP TurboIMAGE DBUTIL allows local users to gain additional privileges via DBUTIL.PUB.SYS.
6.9AI Score
0.0004EPSS
HP JetDirect printers versions G.08.20 and H.08.20 and earlier allow remote attackers to cause a denial of service via a malformed FTP quote command.
7AI Score
0.013EPSS
Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command.
7.6AI Score
0.021EPSS
The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file.
6.7AI Score
0.0004EPSS
Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges.
7AI Score
0.0004EPSS
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
6.9AI Score
0.0004EPSS
Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges.
7AI Score
0.0004EPSS
Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.
7.2AI Score
0.0004EPSS
The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization).
6.8AI Score
0.001EPSS
Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.
7AI Score
0.0004EPSS
HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates.
5.5CVSS
6.7AI Score
0.0004EPSS
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument.
7.3AI Score
0.0004EPSS
Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.
7.8AI Score
0.0004EPSS