Hp-ux@b.11.23 Security Vulnerabilities and Issues — Hp-ux@b.11.23 CVE List

Lucene search

HpHp-uxb.11.23

20 matches found

CVE•added 2012/05/11 10:15 a.m.•1642 views

CVE-2012-1823

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string,...

9.8CVSS9.9AI score0.94386EPSS

CVE•added 2009/02/04 7:30 p.m.•90 views

CVE-2009-0418

The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbi...

9.3CVSS7.7AI score0.14849EPSS

CVE•added 2014/07/17 5:10 a.m.•90 views

CVE-2014-2490

Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

9.3CVSS5.5AI score0.07313EPSS

CVE•added 2004/07/27 4:0 a.m.•71 views

CVE-2004-0594

The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a Ha...

5.1CVSS7.4AI score0.86915EPSS

CVE•added 2008/12/11 3:30 p.m.•54 views

CVE-2008-4418

Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown vectors.

7.8CVSS6.3AI score0.03052EPSS

CVE•added 2011/07/11 8:55 p.m.•53 views

CVE-2011-2398

Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors.

6.8CVSS6.5AI score0.0004EPSS

CVE•added 2011/04/04 12:27 p.m.•50 views

CVE-2011-0891

Unspecified vulnerability in the OS-Core.CORE2-KRN fileset in HP HP-UX B.11.23 and B.11.31 allows local users to cause a denial of service via unknown vectors.

4.4CVSS6.1AI score0.00039EPSS

CVE•added 2009/03/25 1:30 a.m.•49 views

CVE-2009-0207

Unspecified vulnerability in HP-UX B.11.11 running VERITAS Oracle Disk Manager (VRTSodm) 3.5, B.11.23 running VRTSodm 4.1 or VERITAS File System (VRTSvxfs) 4.1, B.11.23 running VRTSodm 5.0 or VRTSvxfs 5.0, and B.11.31 running VRTSodm 5.0 allows local users to gain root privileges via unknown vector...

6.8CVSS6.1AI score0.0003EPSS

CVE•added 2009/04/29 3:30 p.m.•49 views

CVE-2009-0719

Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unknown vectors, a different issue than CVE-2008-1660.

6CVSS6.2AI score0.0006EPSS

CVE•added 2014/03/14 10:55 a.m.•48 views

CVE-2013-6209

Unspecified vulnerability in rpc.lockd in the NFS subsystem in HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

4.3CVSS6.6AI score0.00457EPSS

CVE•added 2010/12/08 6:0 p.m.•47 views

CVE-2010-4108

HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors.

6.8CVSS6.2AI score0.00368EPSS

CVE•added 2008/08/01 2:41 p.m.•46 views

CVE-2008-1662

Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might allow remote attackers to read or modify arbitrary files, related to an "empty systems list."

10CVSS6.5AI score0.0257EPSS

CVE•added 2009/10/05 6:30 p.m.•45 views

CVE-2009-2679

Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors.

7.8CVSS6.3AI score0.01399EPSS

CVE•added 2014/03/11 1:1 p.m.•44 views

CVE-2013-6200

Unspecified vulnerability in m4 in HP HP-UX B.11.23 and B.11.31 allows local users to obtain sensitive information or modify data via unknown vectors.

6.2CVSS5.7AI score0.00054EPSS

CVE•added 2012/04/05 1:55 p.m.•42 views

CVE-2012-0131

Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

10CVSS7.6AI score0.15128EPSS

CVE•added 2014/10/19 1:55 a.m.•42 views

CVE-2014-7874

Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 3.2.3 on HP-UX B.11.23, and before 3.2.8 on HP-UX B.11.31, allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

6.8CVSS7.3AI score0.00161EPSS

CVE•added 2010/08/30 9:0 p.m.•41 views

CVE-2010-2712

Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.

6.8CVSS6.4AI score0.00047EPSS

CVE•added 2007/04/12 10:19 a.m.•40 views

CVE-2007-1993

Buffer overflow in the pfs_mountd.rpc RPC daemon in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2."

9.3CVSS7.6AI score0.04814EPSS

CVE•added 2014/12/10 9:59 p.m.•40 views

CVE-2014-7879

HP HP-UX B.11.11, B.11.23, and B.11.31, when the PAM configuration includes libpam_updbe, allows remote authenticated users to bypass authentication, and consequently execute arbitrary code, via unspecified vectors.

8.5CVSS7AI score0.00421EPSS

CVE•added 2009/09/24 6:30 p.m.•39 views

CVE-2009-2682

Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors.

7.2CVSS6AI score0.00047EPSS