Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hp\-Ux
(Hp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 293 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2003-12-31 | CVE-2003-1358 | rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program. | Hp\-Ux | N/A | ||
| 2003-12-31 | CVE-2003-1356 | The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors. | Hp\-Ux | N/A | ||
| 2003-12-31 | CVE-2003-1099 | shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | Hp\-Ux | N/A | ||
| 2003-12-31 | CVE-2003-1098 | The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges. | Hp\-Ux | N/A | ||
| 2003-12-31 | CVE-2003-1097 | Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. | Hp\-Ux | N/A | ||
| 2003-12-31 | CVE-2003-1087 | Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic. | Hp\-Ux | N/A | ||
| 2003-12-15 | CVE-2003-0951 | Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges. | Hp\-Ux | N/A | ||
| 2003-12-15 | CVE-2003-0914 | ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. | Tru64, Freebsd, Hp\-Ux, Aix, Bind, Netbsd, Namesurfer, Unixware, Solaris, Sunos | N/A | ||
| 2003-11-17 | CVE-2003-0840 | Buffer overflow in dtprintinfo on HP-UX 11.00, and possibly other operating systems, allows local users to gain root privileges via a long DISPLAY environment variable. | Hp\-Ux | N/A | ||
| 2003-10-06 | CVE-2003-0694 | The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. | Mac_os_x, Mac_os_x_server, Tru64, Freebsd, Linux, Hp\-Ux, Aix, Netbsd, Advanced_message_server, Sendmail, Sendmail_pro, Sendmail_switch, Irix, Solaris, Sunos, Turbolinux_advanced_server, Turbolinux_server, Turbolinux_workstation | N/A |