Hp Hp-Ux vulnerabilities

275 known vulnerabilities affecting hp/hp-ux.

Total CVEs

275

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL42HIGH109MEDIUM96LOW28

Vulnerabilities

Page 8 of 14

CVE-2002-1613HIGHCVSS 7.2v10.20v11.00+3 more2002-09-10

CVE-2002-1613 [HIGH] CVE-2002-1613: Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain pr Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

nvd

CVE-2002-1614HIGHCVSS 7.2PoCv10.20v11.00+3 more2002-09-09

CVE-2002-1614 [HIGH] CVE-2002-1614: Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.

nvd

CVE-2002-0679CRITICALCVSS 10.0v10.10v10.20+3 more2002-09-05

CVE-2002-0679 [CRITICAL] CVE-2002-0679: Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) a Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.

nvd

CVE-2002-1604HIGHCVSS 7.5v10.20v11.00+3 more2002-09-02

CVE-2002-1604 [HIGH] CVE-2002-1604: Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbi Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver.

nvd

CVE-2002-1605HIGHCVSS 7.5PoCv10.20v11.00+3 more2002-09-02

CVE-2002-1605 [HIGH] CVE-2002-1605: Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitra Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.

nvd

CVE-2002-1607MEDIUMCVSS 4.6v10.20v11.00+3 more2002-08-31

CVE-2002-1607 [MEDIUM] CVE-2002-1607: Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to ex Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

nvd

CVE-2002-1608MEDIUMCVSS 4.6v10.20v11.00+3 more2002-08-31

CVE-2002-1608 [MEDIUM] CVE-2002-1608: Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.

nvd

CVE-2002-1611MEDIUMCVSS 4.6v10.20v11.00+3 more2002-08-30

CVE-2002-1611 [MEDIUM] CVE-2002-1611: Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

nvd

CVE-2002-1609MEDIUMCVSS 4.6v10.20v11.00+3 more2002-08-30

CVE-2002-1609 [MEDIUM] CVE-2002-1609: Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to ga Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.

nvd

CVE-2002-1606MEDIUMCVSS 4.6v10.20v11.00+3 more2002-08-30

CVE-2002-1606 [MEDIUM] CVE-2002-1606: Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm.

nvd

CVE-2002-1610LOWCVSS 2.1v10.20v11.00+3 more2002-08-30

CVE-2002-1610 [LOW] CVE-2002-1610: Unknown vulnerability in ping in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to Unknown vulnerability in ping in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to cause a denial of service.

nvd

CVE-2002-0798LOWCVSS 2.1v11.00v11.112002-08-12

CVE-2002-0798 [LOW] CVE-2002-0798: Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views fo Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views for files that cannot be directly read by the user, which reportedly can be used to cause a denial of service.

nvd

CVE-2002-0678HIGHCVSS 7.2v10.10v10.20+3 more2002-07-23

CVE-2002-0678 [HIGH] CVE-2002-0678: CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a syml CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

nvd

CVE-2002-0677HIGHCVSS 7.5v10.10v10.20+3 more2002-07-23

CVE-2002-0677 [HIGH] CVE-2002-0677: CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory loca CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

nvd

CVE-2002-0585MEDIUMCVSS 5.0v11.112002-06-18

CVE-2002-0585 [MEDIUM] CVE-2002-0585: Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to caus Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to cause a denial of service.

nvd

CVE-2002-0577LOWCVSS 2.1v11.00v11.0.4+1 more2002-06-18

CVE-2002-0577 [LOW] CVE-2002-0577: Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file an Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file and cause a denial of service.

nvd

CVE-2002-0279MEDIUMCVSS 4.6v11.112002-05-31

CVE-2002-0279 [MEDIUM] CVE-2002-0279: The kernel in HP-UX 11.11 does not properly provide arguments for setrlimit, which could allow local The kernel in HP-UX 11.11 does not properly provide arguments for setrlimit, which could allow local attackers to cause a denial of service (kernel panic) and possibly gain privileges.

nvd

CVE-2003-0061HIGHCVSS 7.2v10.202002-01-11

CVE-2003-0061 [HIGH] CVE-2003-0061: Buffer overflow in passwd for HP UX B.10.20 allows local users to execute arbitrary commands with ro Buffer overflow in passwd for HP UX B.10.20 allows local users to execute arbitrary commands with root privileges via a long LANG environment variable.

nvd

CVE-2001-1509MEDIUMCVSS 4.6v11.202001-12-31

CVE-2001-1509 [MEDIUM] CVE-2001-1509: geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effe geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges.

nvd

CVE-2001-1564LOWCVSS 2.1v10.01v10.10+5 more2001-12-31

CVE-2001-1564 [LOW] CVE-2001-1564: setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space.

nvd

← Previous8 / 14Next →