Vulnerabilities (CVE)

Vendor filter

Product filter

Hp-ux Subscribe

Filter

290 total CVE
CVE Vendors Products Updated CVSS
CVE-2015-4000 12 Google, Openssl, Apple and 9 more 25 Safari, Network Security Services, Ie and 22 more 2019-10-09 4.3
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a...
CVE-2014-7879 1 Hp 1 Hp-ux 2019-10-09 8.5
HP HP-UX B.11.11, B.11.23, and B.11.31, when the PAM configuration includes libpam_updbe, allows remote authenticated users to bypass authentication, and consequently execute arbitrary code, via unspecified vectors.
CVE-2013-6209 1 Hp 1 Hp-ux 2019-10-09 4.3
Unspecified vulnerability in rpc.lockd in the NFS subsystem in HP HP-UX B.11.11 and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.
CVE-2013-6200 1 Hp 1 Hp-ux 2019-10-09 6.2
Unspecified vulnerability in m4 in HP HP-UX B.11.23 and B.11.31 allows local users to obtain sensitive information or modify data via unknown vectors.
CVE-2013-4854 10 Slackware, Freebsd, Redhat and 7 more 13 Hp-ux, Dnsco Bind, Enterprise Linux and 10 more 2019-04-22 7.8
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service...
CVE-2007-4590 1 Hp 3 Ignite-ux, Dynrootdisk, Hp-ux 2018-10-30 3.3
The get_system_info command in Ignite-UX C.7.0 through C.7.3, and DynRootDisk (DRD) A.1.0.16.417 through A.2.0.0.592, on HP-UX B.11.11, B.11.23, and B.11.31 does not inform local users of networking changes made by the command, which has unknown...
CVE-2003-0028 10 Freebsd, Sgi, Ibm and 7 more 13 Hp-ux, Hp-ux Series 700, Aix and 10 more 2018-10-30 7.5
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code...
CVE-2002-1337 7 Windriver, Sgi, Sendmail and 4 more 12 Hp-ux, Freeware, Solaris and 9 more 2018-10-30 10.0
Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.
CVE-2003-0914 9 Sco, Nixu, Freebsd and 6 more 10 Hp-ux, Aix, Namesurfer and 7 more 2018-10-30 4.3
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
CVE-2003-0161 4 Sendmail, Hp, Compaq and 1 more 9 Hp-ux, Hp-ux Series 700, Solaris and 6 more 2018-10-30 10.0
The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as...
CVE-2002-0678 7 Xi Graphics, Sgi, Compaq and 4 more 9 Hp-ux, Aix, Solaris and 6 more 2018-10-30 7.2
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
CVE-2003-0196 5 Hp, Compaq, Samba-tng and 2 more 7 Hp-ux, Solaris, Samba-tng and 4 more 2018-10-30 10.0
Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
CVE-1999-0318 4 Hp, Ibm, Sun and 1 more 5 Hp-ux, Linux, Aix and 2 more 2018-10-30 7.2
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVE-2003-0064 4 Hp, Ibm, Sun and 1 more 5 Hp-ux, Aix, Irix and 2 more 2018-10-30 7.5
The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious...
CVE-2002-0677 7 Xi Graphics, Sgi, Compaq and 4 more 9 Hp-ux, Aix, Solaris and 6 more 2018-10-30 7.5
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by...
CVE-1999-0502 3 Hp, Sun, Redhat 4 Hp-ux, Linux, Solaris and 1 more 2018-10-30 7.5
A Unix account has a default, null, blank, or missing password.
CVE-2003-0694 11 Turbolinux, Apple, Freebsd and 8 more 18 Hp-ux, Aix, Solaris and 15 more 2018-10-30 10.0
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2002-0679 6 Xi Graphics, Compaq, Ibm and 3 more 8 Hp-ux, Aix, Solaris and 5 more 2018-10-30 10.0
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
CVE-2002-1317 4 Sun, Hp, Xfree86 Project and 1 more 5 Hp-ux, Irix, Solaris and 2 more 2018-10-30 7.5
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
CVE-2003-0201 6 Apple, Samba, Samba-tng and 3 more 8 Hp-ux, Solaris, Samba-tng and 5 more 2018-10-30 10.0
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.