Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
Max CVSS
4.6
EPSS Score
0.05%
Published
1996-12-03
Updated
2022-08-17
HP-UX gwind program allows users to modify arbitrary files.
Max CVSS
4.6
EPSS Score
0.04%
Published
1996-10-01
Updated
2008-09-09
Vulnerability in HP-UX mediainit program.
Max CVSS
4.6
EPSS Score
0.04%
Published
1997-10-01
Updated
2008-09-09
Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1994-06-01
Updated
2008-09-09
ftp on HP-UX 11.00 allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-01
Updated
2008-09-09
Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-03-01
Updated
2008-09-09
Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-07-01
Updated
2008-09-09
HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.
Max CVSS
4.6
EPSS Score
0.04%
Published
1997-09-01
Updated
2017-12-19
Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.
Max CVSS
4.6
EPSS Score
0.06%
Published
1998-07-30
Updated
2017-10-10
Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1994-09-21
Updated
2017-12-19
HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so.
Max CVSS
4.6
EPSS Score
0.04%
Published
1994-07-13
Updated
2017-12-19
Vulnerability in subnetconfig in HP-UX 9.01 and 9.0 allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1994-02-07
Updated
2017-12-19
Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1994-11-30
Updated
2017-12-19
movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1997-01-06
Updated
2017-10-10
Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1997-07-31
Updated
2011-03-08
Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
1997-01-07
Updated
2011-03-08
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-04-18
Updated
2008-09-10
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-05-04
Updated
2008-09-10
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-06-02
Updated
2008-09-10
Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-10-20
Updated
2008-09-05
Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-12-19
Updated
2017-10-10
Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-12-11
Updated
2018-05-03
CVE-2001-0311
Public exploit
Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.
Max CVSS
4.6
EPSS Score
0.10%
Published
2001-06-02
Updated
2017-10-10
Vulnerability in the newgrp program included with HP9000 servers running HP-UX 11.11 allows a local attacker to obtain higher access rights.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-06-18
Updated
2017-10-10
asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-22
Updated
2017-10-11