Filtered by vendor Hp
Subscriptions
Filtered by product Hp-ux
Subscriptions
Total
465 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2004-0965 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| stmkfont in HP-UX B.11.00 through B.11.23 relies on the user-specified PATH when executing certain commands, which allows local users to execute arbitrary code by modifying the PATH environment variable to point to malicious programs. | ||||
| CVE-2004-0952 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption. | ||||
| CVE-2003-1461 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability (CVE-2002-1473). | ||||
| CVE-2003-1375 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an argument. | ||||
| CVE-2003-1359 | 2 Avaya, Hp | 2 Predictive Dialer System, Hp-ux | 2017-10-11 | N/A |
| Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument. | ||||
| CVE-2003-1356 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors. | ||||
| CVE-2003-1099 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | ||||
| CVE-2003-1098 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges. | ||||
| CVE-2003-1097 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. | ||||
| CVE-2003-0951 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges. | ||||
| CVE-2003-0089 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify. | ||||
| CVE-2002-2270 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Unspecified vulnerability in the ied command in HP-UX 10.10, 10.20, and 11.0 allows local users to view "normally invisible data" via unknown attack vectors. | ||||
| CVE-2002-2262 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors. | ||||
| CVE-2002-1794 | 1 Hp | 2 Hp-ux, Ldap-ux Integration | 2017-10-11 | N/A |
| Unknown vulnerability in pam_authz in the LDAP-UX Integration product on HP-UX 11.00 and 11.11 allows remote attackers to execute r-commands with privileges of other users. | ||||
| CVE-2002-1618 | 1 Hp | 2 Hp-ux, Jfs | 2017-10-11 | N/A |
| JFS (JFS3.1 and OnlineJFS) in HP-UX 10.20, 11.00, and 11.04 does not properly implement the sticky bit functionality, which could allow attackers to bypass intended restrictions on filesystems. | ||||
| CVE-2002-1409 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| ptrace on HP-UX 11.00 through 11.11 allows local users to cause a denial of service (data page fault panic) via "an incorrect reference to thread register state." | ||||
| CVE-2002-0798 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views for files that cannot be directly read by the user, which reportedly can be used to cause a denial of service. | ||||
| CVE-2002-0585 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to cause a denial of service. | ||||
| CVE-2002-0577 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file and cause a denial of service. | ||||
| CVE-2002-0279 | 1 Hp | 1 Hp-ux | 2017-10-11 | N/A |
| The kernel in HP-UX 11.11 does not properly provide arguments for setrlimit, which could allow local attackers to cause a denial of service (kernel panic) and possibly gain privileges. | ||||