Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hp\-Ux
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 293 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-07-23 | CVE-2002-0677 | CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | Openunix, Unixware, Tru64, Hp\-Ux, Aix, Irix, Solaris, Sunos, Dextop | N/A | ||
| 2002-06-18 | CVE-2002-0585 | Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to cause a denial of service. | Hp\-Ux | N/A | ||
| 2002-06-18 | CVE-2002-0577 | Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file and cause a denial of service. | Hp\-Ux | N/A | ||
| 2002-05-31 | CVE-2002-0279 | The kernel in HP-UX 11.11 does not properly provide arguments for setrlimit, which could allow local attackers to cause a denial of service (kernel panic) and possibly gain privileges. | Hp\-Ux | N/A | ||
| 2001-12-31 | CVE-2001-1564 | setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space. | Hp\-Ux | N/A | ||
| 2001-12-31 | CVE-2001-1509 | geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges. | Hp\-Ux | N/A | ||
| 2001-02-16 | CVE-2001-1439 | Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit. | Hp\-Ux | N/A | ||
| 2001-07-19 | CVE-2001-1264 | Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | Hp\-Ux, Vvos | N/A | ||
| 2001-06-11 | CVE-2001-1256 | kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files. | Hp\-Ux | N/A | ||
| 2001-07-07 | CVE-2001-1244 | Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process. | Freebsd, Hp\-Ux, Vvos, Linux_kernel, Windows_2000, Windows_nt, Netbsd, Openbsd, Sunos | N/A |