Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
HpHp-ux10.20

87 matches found

CVE
CVEadded 2000/02/04 5:0 a.m.423 views

CVE-1999-0502

A Unix account has a default, null, blank, or missing password.

7.5CVSS6.4AI score0.42282EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.297 views

CVE-2002-1614

Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.

7.2CVSS7.8AI score0.00899EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.162 views

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

8.4CVSS7.9AI score0.00114EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.153 views

CVE-2001-0797

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

10CVSS7.4AI score0.88625EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.147 views

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

5CVSS7.3AI score0.25583EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.121 views

CVE-1999-0016

Land IP denial of service.

5CVSS6.6AI score0.72572EPSS
CVE
CVEadded 2003/05/05 4:0 a.m.118 views

CVE-2003-0201

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.

10CVSS7.3AI score0.76919EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.102 views

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

10CVSS7.2AI score0.01076EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.93 views

CVE-2003-0161

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers...

10CVSS7.6AI score0.71952EPSS
CVE
CVEadded 2000/10/13 4:0 a.m.92 views

CVE-2000-0515

The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.

10CVSS6.9AI score0.01471EPSS
CVE
CVEadded 2003/03/25 5:0 a.m.89 views

CVE-2003-0028

Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a differ...

7.5CVSS9.8AI score0.56051EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.84 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

10CVSS7.1AI score0.0353EPSS
CVE
CVEadded 2004/09/01 4:0 a.m.84 views

CVE-2002-1317

Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.

7.5CVSS8AI score0.42484EPSS
CVE
CVEadded 2004/09/01 4:0 a.m.79 views

CVE-2002-1337

Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.

10CVSS7.6AI score0.623EPSS
CVE
CVEadded 2000/02/04 5:0 a.m.76 views

CVE-1999-0015

Teardrop IP denial of service.

5CVSS6.8AI score0.25851EPSS
CVE
CVEadded 2003/05/05 4:0 a.m.74 views

CVE-2003-0196

Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.

10CVSS7.6AI score0.76919EPSS
CVE
CVEadded 2002/07/23 4:0 a.m.68 views

CVE-2002-0677

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

7.5CVSS6.8AI score0.19026EPSS
CVE
CVEadded 2001/12/06 5:0 a.m.66 views

CVE-2001-0817

Vulnerability in HP-UX line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote attackers to modify arbitrary files and gain root privileges via a certain print request.

10CVSS6.9AI score0.05192EPSS
CVE
CVEadded 2003/04/22 4:0 a.m.66 views

CVE-2002-1473

Multiple buffer overflows in lp subsystem for HP-UX 10.20 through 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.

4.6CVSS7.6AI score0.17345EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.65 views

CVE-1999-0014

Unauthorized privileged access or denial of service via dtappgather program in CDE.

7.2CVSS7.4AI score0.0086EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.63 views

CVE-2002-1615

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to execute arbitrary code via (1) msgchk or (2) .upd..loader.

7.2CVSS7.9AI score0.00091EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.61 views

CVE-2002-0678

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

7.2CVSS6.2AI score0.0043EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.55 views

CVE-1999-0353

rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.

9.3CVSS6.7AI score0.00311EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.54 views

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

7.2CVSS6.8AI score0.00096EPSS
CVE
CVEadded 2004/09/01 4:0 a.m.53 views

CVE-2003-0064

The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary...

7.5CVSS7.2AI score0.00871EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.52 views

CVE-2000-0699

Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command.

10CVSS7.6AI score0.04449EPSS
CVE
CVEadded 2001/05/07 4:0 a.m.51 views

CVE-2001-0085

Buffer overflow in Kermit communications software in HP-UX 11.0 and earlier allows local users to cause a denial of service and possibly execute arbitrary commands.

7.2CVSS7.3AI score0.00051EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.50 views

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

4.6CVSS6.6AI score0.00122EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.50 views

CVE-2001-0668

Buffer overflow in line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote attackers to execute arbitrary commands.

7.5CVSS7.6AI score0.01763EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.50 views

CVE-2002-0679

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.

10CVSS7.9AI score0.70866EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.49 views

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

7.2CVSS7.9AI score0.003EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.49 views

CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root privileges.

7.2CVSS7AI score0.00886EPSS
CVE
CVEadded 2000/02/04 5:0 a.m.49 views

CVE-1999-0435

MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.

7.2CVSS6.6AI score0.00079EPSS
CVE
CVEadded 2002/03/15 5:0 a.m.49 views

CVE-2001-1198

RLPDaemon in HP-UX 10.20 and 11.0 allows local users to overwrite arbitrary files and gain privileges by specifying the target file in the -L option.

7.2CVSS7AI score0.00047EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.47 views

CVE-1999-0050

Buffer overflow in HP-UX newgrp program.

7.2CVSS7.7AI score0.00337EPSS
CVE
CVEadded 2005/10/21 6:2 p.m.47 views

CVE-2005-3277

The LPD service in HP-UX 10.20 11.11 (11i) and earlier allows remote attackers to execute arbitrary code via shell metacharacters ("`" or single backquote) in a request that is not properly handled when an error occurs, as demonstrated by killing the connection, a different vulnerability than CVE-2...

10CVSS7.7AI score0.37288EPSS
CVE
CVEadded 2001/01/09 5:0 a.m.46 views

CVE-2000-1126

Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.

10CVSS8.1AI score0.00839EPSS
CVE
CVEadded 2001/09/18 4:0 a.m.46 views

CVE-2001-0488

pcltotiff in HP-UX 10.x has unnecessary set group id permissions, which allows local users to cause a denial of service.

2.1CVSS6.2AI score0.00069EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.46 views

CVE-2002-1607

Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

4.6CVSS7.7AI score0.0015EPSS
CVE
CVEadded 2005/01/06 5:0 a.m.46 views

CVE-2004-1332

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request.

7.5CVSS9.9AI score0.11894EPSS
CVE
CVEadded 2000/07/12 4:0 a.m.45 views

CVE-2000-0414

Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.

4.6CVSS7.1AI score0.00103EPSS
CVE
CVEadded 2001/01/22 5:0 a.m.45 views

CVE-2000-1031

Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.

4.6CVSS7.8AI score0.00417EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.45 views

CVE-2002-1605

Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.

7.5CVSS8.1AI score0.27592EPSS
CVE
CVEadded 2001/05/07 4:0 a.m.44 views

CVE-2001-0219

Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service.

2.1CVSS6.2AI score0.001EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.43 views

CVE-1999-0324

ppl program in HP-UX allows local users to create root files through symlinks.

7.2CVSS7.1AI score0.0006EPSS
CVE
CVEadded 2000/02/04 5:0 a.m.43 views

CVE-2000-0005

HP-UX aserver program allows local users to gain privileges via a symlink attack.

7.2CVSS6.9AI score0.0006EPSS
CVE
CVEadded 1999/09/29 4:0 a.m.42 views

CVE-1999-0326

Vulnerability in HP-UX mediainit program.

4.6CVSS7.3AI score0.00116EPSS
CVE
CVEadded 2000/10/13 4:0 a.m.42 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.

4.6CVSS6.7AI score0.00262EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.42 views

CVE-2002-1604

Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver.

7.5CVSS8.1AI score0.46021EPSS
CVE
CVEadded 2005/03/25 5:0 a.m.42 views

CVE-2002-1606

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm.

4.6CVSS7.2AI score0.00195EPSS
Total number of security vulnerabilities87