Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840.
Max CVSS
10.0
EPSS Score
0.23%
Published
2003-12-31
Updated
2017-07-29
Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors.
Max CVSS
10.0
EPSS Score
0.40%
Published
2003-12-31
Updated
2017-07-29
Unspecified vulnerability in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (CPU consumption) via a crafted TCP packet.
Max CVSS
5.0
EPSS Score
0.80%
Published
2003-12-31
Updated
2017-07-29
Memory leak in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (memory exhaustion) via crafted TCP packets.
Max CVSS
5.0
EPSS Score
0.87%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability (CVE-2002-1473).
Max CVSS
7.2
EPSS Score
0.05%
Published
2003-12-31
Updated
2017-10-11
Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-10-11
Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the (1) NOVRFY and (2) NOEXPN options in the sendmail.cf file, which could allow remote attackers to verify the existence of system users and expand defined sendmail aliases.
Max CVSS
7.8
EPSS Score
0.35%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-10-11
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors.
Max CVSS
7.2
EPSS Score
0.06%
Published
2003-12-31
Updated
2017-10-11
The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-10-11
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-10-11
Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic.
Max CVSS
5.0
EPSS Score
1.16%
Published
2003-12-31
Updated
2017-07-11
Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges.
Max CVSS
7.5
EPSS Score
0.19%
Published
2003-12-15
Updated
2017-10-11
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
Max CVSS
4.3
EPSS Score
2.35%
Published
2003-12-15
Updated
2018-10-30
Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-15
Updated
2017-10-11
18 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!