Hp Hp-Ux vulnerabilities

CVE-1999-0436 [MEDIUM] CVE-1999-0436: Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges. Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges.

CVE-1999-1247 [HIGH] CVE-1999-1247: Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privi Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges.

CVE-1999-0353 [CRITICAL] CVE-1999-0353: rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool dire rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.

CVE-2000-0005 [HIGH] CVE-2000-0005: HP-UX aserver program allows local users to gain privileges via a symlink attack. HP-UX aserver program allows local users to gain privileges via a symlink attack.

CVE-1999-0057 [HIGH] CVE-1999-0057: Vacation program allows command execution by remote users through a sendmail command. Vacation program allows command execution by remote users through a sendmail command.

CVE-1999-0779 [MEDIUM] CVE-1999-0779: Denial of service in HP-UX SharedX recserv program. Denial of service in HP-UX SharedX recserv program.

CVE-1999-1136 [MEDIUM] CWE-200 CVE-1999-1136: Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

CVE-1999-0008 [CRITICAL] CVE-1999-0008: Buffer overflow in NIS+, in Sun's rpc.nisd program. Buffer overflow in NIS+, in Sun's rpc.nisd program.

CVE-1999-0003 [CRITICAL] CVE-1999-0003: Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

CVE-1999-0502 [HIGH] CVE-1999-0502: A Unix account has a default, null, blank, or missing password. A Unix account has a default, null, blank, or missing password.

CVE-1999-0014 [HIGH] CVE-1999-0014: Unauthorized privileged access or denial of service via dtappgather program in CDE. Unauthorized privileged access or denial of service via dtappgather program in CDE.

CVE-1999-0513 [MEDIUM] CVE-1999-0513: ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denia ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

CVE-1999-0216 [MEDIUM] CVE-1999-0216: Denial of service of inetd on Linux through SYN and RST packets. Denial of service of inetd on Linux through SYN and RST packets.

CVE-1999-0097 [CRITICAL] CVE-1999-0097: The AIX FTP client can be forced to execute commands from a malicious server through shell metachara The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

CVE-1999-1213 [MEDIUM] CVE-1999-1213: Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service. Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service.

CVE-1999-1139 [HIGH] CVE-1999-1139: Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.

CVE-1999-1133 [MEDIUM] CVE-1999-1133: HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, ( HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.

CVE-1999-1308 [MEDIUM] CVE-1999-1308: Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges.

CVE-1999-0962 [HIGH] CVE-1999-0962: Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option.

CVE-1999-0040 [HIGH] CVE-1999-0040: Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.