Lucene search

K
HpHp-ux

60 matches found

CVE
CVE
added 2015/05/21 12:59 a.m.1130 views

CVE-2015-4000

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then ...

4.3CVSS4.8AI score0.94027EPSS
CVE
CVE
added 2003/04/22 4:0 a.m.66 views

CVE-2002-1473

Multiple buffer overflows in lp subsystem for HP-UX 10.20 through 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.

4.6CVSS7.6AI score0.17345EPSS
CVE
CVE
added 2003/12/15 5:0 a.m.58 views

CVE-2003-0914

ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.

4.3CVSS6.2AI score0.19846EPSS
CVE
CVE
added 2006/03/30 1:6 a.m.56 views

CVE-2006-1509

/sbin/passwd in HP-UX B.11.00, B.11.11, and B.11.23 before 20060326 "does not recover gracefully from some error conditions," which allows local users to cause a denial of service.

4.9CVSS6AI score0.00078EPSS
CVE
CVE
added 2008/12/05 12:30 a.m.56 views

CVE-2008-4416

Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.

4.6CVSS5.8AI score0.00046EPSS
CVE
CVE
added 2001/06/02 4:0 a.m.52 views

CVE-2001-0311

Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.

4.6CVSS6.6AI score0.41182EPSS
CVE
CVE
added 2014/10/30 10:55 a.m.52 views

CVE-2014-7877

Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.

4.9CVSS6.1AI score0.00083EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.50 views

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

4.6CVSS6.6AI score0.00122EPSS
CVE
CVE
added 2011/04/04 12:27 p.m.50 views

CVE-2011-0891

Unspecified vulnerability in the OS-Core.CORE2-KRN fileset in HP HP-UX B.11.23 and B.11.31 allows local users to cause a denial of service via unknown vectors.

4.4CVSS6.1AI score0.00039EPSS
CVE
CVE
added 2001/08/22 4:0 a.m.49 views

CVE-2001-0607

asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.

4.6CVSS6.6AI score0.00078EPSS
CVE
CVE
added 2014/03/14 10:55 a.m.48 views

CVE-2013-6209

Unspecified vulnerability in rpc.lockd in the NFS subsystem in HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

4.3CVSS6.6AI score0.00457EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.47 views

CVE-1999-1136

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

4.6CVSS6.8AI score0.00126EPSS
CVE
CVE
added 2000/04/18 4:0 a.m.47 views

CVE-2000-0083

HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.

4.6CVSS6.8AI score0.00078EPSS
CVE
CVE
added 2006/10/23 5:7 p.m.47 views

CVE-2006-5452

Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.

4.6CVSS7.4AI score0.00211EPSS
CVE
CVE
added 2010/03/31 6:0 p.m.47 views

CVE-2010-1030

Unspecified vulnerability in HP-UX B.11.31, with AudFilter rules enabled, allows local users to cause a denial of service via unknown vectors.

4.4CVSS6.1AI score0.00038EPSS
CVE
CVE
added 2005/03/25 5:0 a.m.46 views

CVE-2002-1607

Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

4.6CVSS7.7AI score0.0015EPSS
CVE
CVE
added 2000/07/12 4:0 a.m.45 views

CVE-2000-0414

Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.

4.6CVSS7.1AI score0.00103EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.45 views

CVE-2000-1031

Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.

4.6CVSS7.8AI score0.00417EPSS
CVE
CVE
added 2002/05/31 4:0 a.m.45 views

CVE-2002-0279

The kernel in HP-UX 11.11 does not properly provide arguments for setrlimit, which could allow local attackers to cause a denial of service (kernel panic) and possibly gain privileges.

4.6CVSS6.6AI score0.0013EPSS
CVE
CVE
added 2007/02/14 2:28 a.m.45 views

CVE-2007-0916

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

4.9CVSS5.9AI score0.00072EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.44 views

CVE-1999-0432

ftp on HP-UX 11.00 allows local users to gain privileges.

4.6CVSS6.6AI score0.00103EPSS
CVE
CVE
added 2010/03/29 10:30 p.m.44 views

CVE-2010-0451

The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_SERVER setting in the nfsconf file, which might allow remote attackers to obtain filesystem access via NFS requests.

4CVSS6.7AI score0.01466EPSS
CVE
CVE
added 2007/04/12 10:19 a.m.43 views

CVE-2007-1994

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.00 allows local users to cause a denial of service via unknown vectors. NOTE: due to lack of vendor details, it is not clear whether this is the same as CVE-2007-0916.

4.9CVSS5.8AI score0.00072EPSS
CVE
CVE
added 2010/04/21 2:30 p.m.43 views

CVE-2010-1032

Unspecified vulnerability in HP HP-UX B.11.11 allows local users to cause a denial of service via unknown vectors.

4.9CVSS6.1AI score0.00072EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.42 views

CVE-1999-0326

Vulnerability in HP-UX mediainit program.

4.6CVSS7.3AI score0.00116EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.42 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.

4.6CVSS6.7AI score0.00262EPSS
CVE
CVE
added 2001/10/18 4:0 a.m.42 views

CVE-2001-0772

Buffer overflows and other vulnerabilities in multiple Common Desktop Environment (CDE) modules in HP-UX 10.10 through 11.11 allow attackers to cause a denial of service and possibly gain additional privileges.

4.6CVSS7.4AI score0.00123EPSS
CVE
CVE
added 2005/03/25 5:0 a.m.42 views

CVE-2002-1606

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm.

4.6CVSS7.2AI score0.00195EPSS
CVE
CVE
added 2005/03/25 5:0 a.m.42 views

CVE-2002-1608

Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

4.6CVSS7.7AI score0.0015EPSS
CVE
CVE
added 2007/01/19 11:28 p.m.42 views

CVE-2007-0394

HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.

4.6CVSS6.5AI score0.00211EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.41 views

CVE-1999-0688

Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.

4.6CVSS7.1AI score0.00123EPSS
CVE
CVE
added 2005/03/25 5:0 a.m.41 views

CVE-2002-1609

Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

4.6CVSS7.2AI score0.0013EPSS
CVE
CVE
added 2007/10/09 6:17 p.m.41 views

CVE-2007-5302

Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00563EPSS
CVE
CVE
added 2007/10/18 12:17 a.m.41 views

CVE-2007-5536

Unspecified vulnerability in OpenSSL before A.00.09.07l on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to cause a denial of service via unspecified vectors.

4.9CVSS6AI score0.00089EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.40 views

CVE-1999-0436

Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges.

4.6CVSS6.5AI score0.00103EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.40 views

CVE-1999-1238

Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.

4.6CVSS7.3AI score0.00052EPSS
CVE
CVE
added 2001/09/18 4:0 a.m.40 views

CVE-2001-0379

Vulnerability in the newgrp program included with HP9000 servers running HP-UX 11.11 allows a local attacker to obtain higher access rights.

4.6CVSS6.6AI score0.00108EPSS
CVE
CVE
added 2006/03/17 7:2 p.m.40 views

CVE-2006-1248

Unspecified vulnerability in usermod in HP-UX B.11.00, B.11.11, and B.11.23, when run with certain options that involve a new home directory, might cause usermod to change the ownership of all directories and files under the new directory, which might result in less secure permissions than intended...

4.6CVSS6.4AI score0.00088EPSS
CVE
CVE
added 2005/01/19 5:0 a.m.39 views

CVE-2004-1375

Unknown vulnerability in System Administration Manager (SAM) in HP-UX B.11.00, B.11.11, B.11.22, and B.11.23 allows local users to gain privileges.

4.6CVSS6.3AI score0.00107EPSS
CVE
CVE
added 2006/06/23 8:6 p.m.39 views

CVE-2006-3201

Unspecified vulnerability in the kernel in HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

4.9CVSS6.1AI score0.00075EPSS
CVE
CVE
added 2006/09/14 9:0 p.m.38 views

CVE-2004-2665

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.00, B.11.04, and B.11.11 before 20040628 allows local users to cause a denial of service via unspecified vectors.

4.9CVSS6.2AI score0.00076EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.37 views

CVE-2000-0966

Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.

4.6CVSS7AI score0.00117EPSS
CVE
CVE
added 2006/10/27 4:7 p.m.37 views

CVE-2006-5557

Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to b...

4.6CVSS7.8AI score0.0061EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.36 views

CVE-1999-1308

Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges.

4.6CVSS7.4AI score0.00111EPSS
CVE
CVE
added 2000/10/20 4:0 a.m.36 views

CVE-2000-0730

Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges.

4.6CVSS7AI score0.00086EPSS
CVE
CVE
added 2007/10/19 10:0 a.m.36 views

CVE-2003-1374

Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options.

4.6CVSS7.9AI score0.00119EPSS
CVE
CVE
added 2006/09/14 9:7 p.m.36 views

CVE-2006-4795

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors.

4.6CVSS6.2AI score0.00048EPSS
CVE
CVE
added 2006/10/27 4:7 p.m.36 views

CVE-2006-5556

Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long TZ environment variable.

4.6CVSS7.8AI score0.00214EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.35 views

CVE-1999-1248

Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges.

4.6CVSS7.3AI score0.00052EPSS
CVE
CVE
added 2005/03/25 5:0 a.m.35 views

CVE-2002-1611

Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

4.6CVSS7.2AI score0.00135EPSS
Total number of security vulnerabilities60