Filtered by vendor Hp
Subscriptions
Filtered by product Hp-ux
Subscriptions
Total
467 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0972 | 1 Hp | 1 Hp-ux | 2024-08-08 | 5.5 Medium |
| HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates. | ||||
| CVE-2000-0801 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option. | ||||
| CVE-2000-0730 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges. | ||||
| CVE-2000-0699 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command. | ||||
| CVE-2000-0702 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file. | ||||
| CVE-2000-0573 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command. | ||||
| CVE-2000-0468 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack. | ||||
| CVE-2000-0515 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges. | ||||
| CVE-2000-0414 | 1 Hp | 2 Hp-ux, Vvos | 2024-08-08 | N/A |
| Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables. | ||||
| CVE-2000-0251 | 1 Hp | 2 Hp-ux, Vvos | 2024-08-08 | N/A |
| HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses. | ||||
| CVE-2000-0159 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges. | ||||
| CVE-2000-0083 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges. | ||||
| CVE-2000-0078 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command. | ||||
| CVE-2000-0077 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands. | ||||
| CVE-2000-0095 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier. | ||||
| CVE-2000-0005 | 1 Hp | 3 9000, Aserver, Hp-ux | 2024-08-08 | N/A |
| HP-UX aserver program allows local users to gain privileges via a symlink attack. | ||||
| CVE-2001-1439 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit. | ||||
| CVE-2001-1509 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges. | ||||
| CVE-2001-1564 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space. | ||||
| CVE-2001-1256 | 1 Hp | 1 Hp-ux | 2024-08-08 | N/A |
| kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files. | ||||