Hp-ux Security Vulnerabilities and Issues — Hp-ux CVE List

Lucene search

HpHp-ux

31 matches found

CVE•added 2016/07/19 10:59 p.m.•444 views

CVE-2016-2775

ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the named lwres option is enabled, allows remote attackers to cause a denial of service (daemon crash) via a long request that uses the lightweight resolver protocol.

5.9CVSS5.7AI score0.34225EPSS

CVE•added 1999/09/29 4:0 a.m.•147 views

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

5CVSS7.3AI score0.25583EPSS

CVE•added 1999/09/29 4:0 a.m.•121 views

CVE-1999-0016

Land IP denial of service.

5CVSS6.6AI score0.72572EPSS

CVE•added 2004/11/23 5:0 a.m.•87 views

CVE-2004-0081

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

5CVSS7.2AI score0.02271EPSS

CVE•added 2004/11/23 5:0 a.m.•87 views

CVE-2004-0112

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-b...

5CVSS7.2AI score0.00942EPSS

CVE•added 2000/02/04 5:0 a.m.•76 views

CVE-1999-0015

Teardrop IP denial of service.

5CVSS6.8AI score0.25851EPSS

CVE•added 2004/09/17 4:0 a.m.•72 views

CVE-2004-0809

The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.

5CVSS7.2AI score0.16458EPSS

CVE•added 2004/07/27 4:0 a.m.•71 views

CVE-2004-0594

The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a Ha...

5.1CVSS7.4AI score0.86915EPSS

CVE•added 2005/05/02 4:0 a.m.•64 views

CVE-2005-1192

Unknown vulnerability in HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and B.11.23, when running TCP/IP on IPv4, allows remote attackers to cause a denial of service via certain packets, related to the PMTU, a different vulnerability than CVE-2004-1060.

5CVSS7.3AI score0.59911EPSS

CVE•added 2000/07/12 4:0 a.m.•52 views

CVE-2000-0251

HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.

5CVSS7AI score0.01429EPSS

CVE•added 2000/02/04 5:0 a.m.•50 views

CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

5CVSS7.4AI score0.03605EPSS

CVE•added 2002/03/15 5:0 a.m.•50 views

CVE-2001-1124

rpcbind in HP-UX 11.00, 11.04 and 11.11 allows remote attackers to cause a denial of service (core dump) via a malformed RPC portmap requests, possibly related to a buffer overflow.

5CVSS6.9AI score0.00794EPSS

CVE•added 2005/02/11 5:0 a.m.•49 views

CVE-2005-0364

Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to cause a denial of service.

5CVSS6.6AI score0.00826EPSS

CVE•added 2000/02/04 5:0 a.m.•48 views

CVE-1999-0216

Denial of service of inetd on Linux through SYN and RST packets.

5CVSS7.4AI score0.00588EPSS

CVE•added 1999/09/29 4:0 a.m.•48 views

CVE-1999-0479

Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems.

5CVSS7AI score0.0071EPSS

CVE•added 2002/05/03 4:0 a.m.•48 views

CVE-2001-1244

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network tra...

5CVSS7.1AI score0.08688EPSS

CVE•added 1999/09/29 4:0 a.m.•44 views

CVE-1999-0312

HP ypbind allows attackers with root privileges to modify NIS data.

5CVSS7.3AI score0.01905EPSS

CVE•added 2000/01/04 5:0 a.m.•44 views

CVE-1999-0686

Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.

5CVSS6.9AI score0.0071EPSS

CVE•added 2005/11/16 9:17 p.m.•44 views

CVE-2002-2138

RFC-NETBIOS in HP Advanced Server/9000 B.04.05 through B.04.09, when running HP-UX 11.00 or 11.11, allows remote attackers to cause a denial of service (panic) via a malformed UDP packet on port 139.

5CVSS7AI score0.01513EPSS

CVE•added 2001/01/22 5:0 a.m.•43 views

CVE-2000-0972

HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates.

5.5CVSS6.7AI score0.01566EPSS

CVE•added 2000/04/18 4:0 a.m.•42 views

CVE-2000-0095

The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.

5CVSS7AI score0.00525EPSS

CVE•added 2001/05/07 4:0 a.m.•41 views

CVE-2001-0106

Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of service when the "swait" state is used by a server.

5CVSS6.8AI score0.00678EPSS

CVE•added 2002/06/18 4:0 a.m.•40 views

CVE-2002-0585

Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to cause a denial of service.

5CVSS6.5AI score0.00708EPSS

CVE•added 2007/10/18 10:0 a.m.•40 views

CVE-2002-2262

Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors.

5CVSS6.9AI score0.01199EPSS

CVE•added 2006/08/17 12:4 a.m.•38 views

CVE-2006-4188

Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

5CVSS6.5AI score0.05211EPSS

CVE•added 2001/09/12 4:0 a.m.•37 views

CVE-1999-1213

Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service.

5CVSS7.2AI score0.00678EPSS

CVE•added 2012/03/28 10:54 a.m.•37 views

CVE-2012-0126

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 and 11.23 allows remote attackers to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0125.

5.8CVSS6.4AI score0.00843EPSS

CVE•added 2005/02/26 5:0 a.m.•36 views

CVE-2003-1087

Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic.

5CVSS6.7AI score0.00914EPSS

CVE•added 2007/11/14 11:0 a.m.•32 views

CVE-2004-2753

Unspecified vulnerability in SharedX in HP-UX B.11.00, B.11.11, and B.11.22 allows local users to access unspecified files or cause a denial of service via unknown vectors related to handling of "files in a potentially insecure manner."

5.6CVSS6.3AI score0.00078EPSS

CVE•added 2023/06/16 9:15 p.m.•32 views

CVE-2023-30903

HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface is configured with IPv6/inet6.

5.5CVSS5.3AI score0.00145EPSS

CVE•added 2000/01/04 5:0 a.m.•31 views

CVE-1999-0779

Denial of service in HP-UX SharedX recserv program.

5CVSS6.8AI score0.0071EPSS