Lucene search

Tru64 Security Vulnerabilities

cve

CVE-2000-1031

Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.

7.8AI Score

0.0004EPSS

2001-01-22 05:00 AM

cve

CVE-2002-1474

Unknown vulnerability or vulnerabilities in TCP/IP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to cause a denial of service.

7.3AI Score

0.003EPSS

2003-04-22 04:00 AM

cve

CVE-2002-1475

Unknown vulnerability in the ARP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to "take over packets destined for another host" and cause a denial of service.

7AI Score

0.003EPSS

2003-04-22 04:00 AM

cve

CVE-2002-1604

Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver.

8.1AI Score

0.04EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1605

Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.

8.1AI Score

0.023EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1606

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm.

7.2AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1607

Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

7.7AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1608

Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

7.7AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1609

Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

7.2AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1610

Unknown vulnerability in ping in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to cause a denial of service.

6.6AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1611

Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

7.2AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1612

Buffer overflow in mailcv in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

7.2AI Score

0.001EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1613

Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

7.2AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1614

Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.

7.8AI Score

0.0004EPSS

2005-03-25 05:00 AM

164

cve

CVE-2002-1615

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to execute arbitrary code via (1) msgchk or (2) .upd..loader.

7.9AI Score

0.0004EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1616

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.

7.2AI Score

0.001EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1617

Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm.

7.8AI Score

0.001EPSS

2005-03-25 05:00 AM

cve

CVE-2002-1784

Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a allows remote attackers to cause a denial of service via unknown attack vectors.

6.9AI Score

0.007EPSS

2005-06-28 04:00 AM

cve

CVE-2003-0221

The (1) dupatch and (2) setld utilities in HP Tru64 UNIX 5.1B PK1 and earlier allows local users to overwrite files and possibly gain root privileges via a symlink attack.

7AI Score

0.0004EPSS

2003-05-12 04:00 AM

cve

CVE-2003-1496

Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840.

6.5AI Score

0.003EPSS

2007-10-25 07:00 PM

cve

CVE-2004-2678

Unspecified vulnerability in HP Tru64 UNIX 5.1B PK2(BL22) and PK3(BL24), and 5.1A PK6(BL24), when using IPsec/IKE (Internet Key Exchange) with Certificates, allows remote attackers to gain privileges via unknown attack vectors.

7.3AI Score

0.016EPSS

2007-02-27 02:00 AM

cve

CVE-2005-0719

Unknown vulnerability in the systems message queue in HP Tru64 Unix 4.0F PK8 through 5.1B-2/PK4 allows local users to cause a denial of service (process crash) for processes such as nfsstat, pfstat, arp, ogated, rarpd, route, sendmail, srconfig, strsetup, trpt, netstat, and xntpd.

6.6AI Score

0.0004EPSS

2005-03-12 05:00 AM

cve

CVE-2005-2993

Unspecified vulnerability in the FTP Daemon (ftpd) for HP Tru64 UNIX 4.0F PK8 and other versions up to HP Tru64 UNIX 5.1B-3, and HP-UX B.11.00, B.11.04, B.11.11, and B.11.23, allows remote authenticated users to cause a denial of service (hang).

6.2AI Score

0.003EPSS

2005-09-20 08:03 PM

cve

CVE-2005-3670

Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in HP HP-UX B.11.00, B.11.11, and B.11.23 running IPSec, HP Jetdirect 635n IPv6/IPsec Print Server, and HP Tru64 UNIX 5.1B-3 and 5.1B-2/PK4, allow remote attackers to cause a denial of service via cer...

6.9AI Score

0.064EPSS

2005-11-18 09:03 PM

cve

CVE-2006-5452

Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.

7.4AI Score

0.001EPSS

2006-10-23 05:07 PM

cve

CVE-2006-6418

Buffer overflow in the POSIX Threads library (libpthread) on HP Tru64 UNIX 4.0F PK8, 4.0G PK4, and 5.1A PK6 allows local users to gain root privileges via a long PTHREAD_CONFIG environment variable.

7.2AI Score

0.001EPSS

2006-12-10 11:28 AM

cve

CVE-2007-0805

The ps (/usr/ucb/ps) command on HP Tru64 UNIX 5.1 1885 allows local users to obtain sensitive information, including environment variables of arbitrary processes, via the "auxewww" argument, a similar issue to CVE-1999-1587.

6.2AI Score

0.0004EPSS

2007-02-07 11:28 AM

cve

CVE-2007-2553

Unspecified vulnerability in dop in HP Tru64 UNIX 5.1B-4, 5.1B-3, and 5.1A PK6 allows local users to gain privileges via a large amount of data in the environment, as demonstrated by a long environment variable.

6.5AI Score

0.0004EPSS

2007-05-09 05:19 PM

cve

CVE-2007-2791

Unspecified vulnerability in the Secure Shell (SSH) in HP Tru64 UNIX 5.1B-4 and 5.1B-3 allows remote attackers to identify valid users via unspecified vectors, probably related to timing attacks and AuthInteractiveFailureRandomTimeout.

6.5AI Score

0.113EPSS

2007-05-22 12:30 AM

cve

CVE-2007-6519

Unspecified vulnerability in the File-on-File Mounting File System (FFM) in HP Tru64 UNIX 5.1B-4 and 5.1B-3 allows local users to cause a denial of service (system crash) via unspecified vectors.

6.2AI Score

0.0004EPSS

2007-12-24 08:46 PM

cve

CVE-2008-4414

Unspecified vulnerability in the AdvFS showfile command in HP Tru64 UNIX 5.1B-3 and 5.1B-4 allows local users to gain privileges via unspecified vectors.

6.7AI Score

0.0004EPSS

2008-11-07 07:35 PM