Hp Hp-Ux vulnerabilities

CVE-2004-0716 [CRITICAL] CVE-2004-0716: Buffer overflow in the DCE daemon (DCED) for the DCE endpoint mapper (epmap) on HP-UX 11 allows remo Buffer overflow in the DCE daemon (DCED) for the DCE endpoint mapper (epmap) on HP-UX 11 allows remote attackers to execute arbitrary code via a request with a small fragment length and a large amount of data.

CVE-2004-0594 [MEDIUM] CWE-367 CVE-2004-0594: The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditi The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization o

CVE-2004-1764 [HIGH] CVE-2004-1764: Buffer overflow in CDE libDtSvc on HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows local users t Buffer overflow in CDE libDtSvc on HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows local users to gain root privileges via unknown vectors.

CVE-2003-1359 [HIGH] CWE-119 CVE-2003-1359: Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privilege Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.

CVE-2003-1358 [HIGH] CWE-264 CVE-2003-1358: rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.

CVE-2003-1098 [HIGH] CVE-2003-1098: The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows loc The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges.

CVE-2003-1360 [HIGH] CWE-119 CVE-2003-1360: Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 thr Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable.

CVE-2003-1356 [HIGH] CWE-264 CVE-2003-1356: The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," wh The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors.

CVE-2003-1375 [HIGH] CWE-119 CVE-2003-1375: Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary cod Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an argument.

CVE-2003-1097 [HIGH] CVE-2003-1097: Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local u Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.

CVE-2003-1461 [HIGH] CVE-2003-1461: Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a lon Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability (CVE-2002-1473).

CVE-2003-1374 [MEDIUM] CWE-119 CVE-2003-1374: Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options.

CVE-2003-1087 [MEDIUM] CVE-2003-1087: Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running H Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic.

CVE-2003-0089 [HIGH] CVE-2003-0089: Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local use Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify.

CVE-2003-0951 [HIGH] CVE-2003-0951: Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provide Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges.

CVE-2003-0914 [MEDIUM] CVE-2003-0914: ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.

CVE-2003-0840 [HIGH] CVE-2003-0840: Buffer overflow in dtprintinfo on HP-UX 11.00, and possibly other operating systems, allows local us Buffer overflow in dtprintinfo on HP-UX 11.00, and possibly other operating systems, allows local users to gain root privileges via a long DISPLAY environment variable.

CVE-2003-0694 [CRITICAL] CVE-2003-0694: The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

CVE-2003-0681 [HIGH] CVE-2003-0681: A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rul A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.

CVE-2003-0333 [HIGH] CVE-2003-0333: Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other ve Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions before 8.0) allow local users to gain privileges via long arguments to (1) ask, (2) askq, (3) define, (4) assign, and (5) getc, some of which may share the same underlying function "doask," a different vulnerability than CVE-2001-0085.