Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hp\-Ux
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 293 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 1997-05-01 | CVE-1999-0040 | Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. | Bsd_os, Freebsd, Hp\-Ux, Aix, Asl_ux_4800, Ews\-Ux_v, Up\-Ux_v, Irix, Solaris, Sunos | N/A | ||
| 1997-10-29 | CVE-1999-0097 | The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). | Hp\-Ux, Aix, Solaris, Sunos | N/A | ||
| 1997-11-01 | CVE-1999-0216 | Denial of service of inetd on Linux through SYN and RST packets. | Inet, Hp\-Ux, Linux_kernel | N/A | ||
| 1998-01-05 | CVE-1999-0513 | ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. | Unix, Freebsd, Hp\-Ux, Aix, Linux_kernel, Netbsd, Solaris, Sunos | N/A | ||
| 1998-03-01 | CVE-1999-0502 | A Unix account has a default, null, blank, or missing password. | Hp\-Ux, Linux, Solaris, Sunos | N/A | ||
| 1998-08-01 | CVE-1999-0333 | HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack. | Hp\-Ux | N/A | ||
| 1999-03-01 | CVE-1999-0435 | MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM. | Hp\-Ux | N/A | ||
| 2000-12-20 | CVE-1999-0307 | Buffer overflow in HP-UX cstm program allows local users to gain root privileges. | Hp\-Ux | N/A | ||
| 2014-07-17 | CVE-2014-2490 | Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. | Debian_linux, Hp\-Ux, Jdk, Jre | N/A | ||
| 2019-01-16 | CVE-2018-5740 | "deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2. | Ubuntu_linux, Debian_linux, Hp\-Ux, Bind, Data_ontap_edge, Leap, Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_workstation | 7.5 |