Hp-ux@11.4 Security Vulnerabilities and Issues — Hp-ux@11.4 CVE List

Lucene search

HpHp-ux11.4

21 matches found

CVE•added 2000/07/12 4:0 a.m.•52 views

CVE-2000-0251

HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.

5CVSS7AI score0.01429EPSS

CVE•added 2006/03/25 12:6 a.m.•51 views

CVE-2006-1389

Unspecified vulnerability in swagentd in HP-UX B.11.00, B.11.04, and B.11.11 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

7.8CVSS6.5AI score0.07825EPSS

CVE•added 2006/07/03 1:5 a.m.•51 views

CVE-2006-3335

Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.

7.2CVSS6.4AI score0.00061EPSS

CVE•added 2005/03/10 5:0 a.m.•50 views

CVE-2004-1764

Buffer overflow in CDE libDtSvc on HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows local users to gain root privileges via unknown vectors.

7.2CVSS6.8AI score0.00076EPSS

CVE•added 2006/10/23 5:7 p.m.•47 views

CVE-2006-5452

Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.

4.6CVSS7.4AI score0.00211EPSS

CVE•added 2001/01/09 5:0 a.m.•46 views

CVE-2000-1126

Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.

10CVSS8.1AI score0.00839EPSS

CVE•added 2005/01/06 5:0 a.m.•46 views

CVE-2004-1332

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request.

7.5CVSS9.9AI score0.11894EPSS

CVE•added 2005/09/20 8:3 p.m.•46 views

CVE-2005-2993

Unspecified vulnerability in the FTP Daemon (ftpd) for HP Tru64 UNIX 4.0F PK8 and other versions up to HP Tru64 UNIX 5.1B-3, and HP-UX B.11.00, B.11.04, B.11.11, and B.11.23, allows remote authenticated users to cause a denial of service (hang).

1.7CVSS6.2AI score0.00176EPSS

CVE•added 2001/01/22 5:0 a.m.•45 views

CVE-2000-1031

Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.

4.6CVSS7.8AI score0.00417EPSS

CVE•added 2005/11/16 9:17 p.m.•44 views

CVE-2002-2138

RFC-NETBIOS in HP Advanced Server/9000 B.04.05 through B.04.09, when running HP-UX 11.00 or 11.11, allows remote attackers to cause a denial of service (panic) via a malformed UDP packet on port 139.

5CVSS7AI score0.01513EPSS

CVE•added 2006/01/26 11:7 a.m.•43 views

CVE-2006-0436

Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors.

7.2CVSS6.3AI score0.00053EPSS

CVE•added 2005/01/19 5:0 a.m.•39 views

CVE-2004-1375

Unknown vulnerability in System Administration Manager (SAM) in HP-UX B.11.00, B.11.11, B.11.22, and B.11.23 allows local users to gain privileges.

4.6CVSS6.3AI score0.00107EPSS

CVE•added 2005/01/06 5:0 a.m.•38 views

CVE-2004-1328

Unknown vulnerability in newgrp in HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain elevated privileges.

7.2CVSS6.5AI score0.00049EPSS

CVE•added 2006/09/14 9:0 p.m.•38 views

CVE-2004-2665

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.00, B.11.04, and B.11.11 before 20040628 allows local users to cause a denial of service via unspecified vectors.

4.9CVSS6.2AI score0.00076EPSS

CVE•added 2006/08/17 12:4 a.m.•38 views

CVE-2006-4188

Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

5CVSS6.5AI score0.05211EPSS

CVE•added 2005/12/17 11:3 a.m.•37 views

CVE-2005-4316

HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.

7.8CVSS6.4AI score0.164EPSS

CVE•added 2006/10/27 4:7 p.m.•37 views

CVE-2006-5557

Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to b...

4.6CVSS7.8AI score0.0061EPSS

CVE•added 2006/10/27 4:7 p.m.•36 views

CVE-2006-5556

Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long TZ environment variable.

4.6CVSS7.8AI score0.00214EPSS

CVE•added 2005/02/25 5:0 a.m.•33 views

CVE-2005-0547

Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and B.11.23 allows remote authenticated users to gain "unauthorized access to files."

4.6CVSS9.1AI score0.00374EPSS

CVE•added 2006/05/24 11:2 p.m.•32 views

CVE-2006-2574

Multiple unspecified vulnerabilities in Software Distributor in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allow local users to gain privileges via unspecified attack vectors.

7.2CVSS6.6AI score0.00104EPSS

CVE•added 2006/10/27 4:7 p.m.•29 views

CVE-2006-5558

Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be...

10CVSS7.2AI score0.03348EPSS