National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:hp:hp-ux:10.01
There are 103 matching records.
Displaying matches 61 through 80.
Vuln ID Summary CVSS Severity
CVE-2001-0607

asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.

Published: August 22, 2001; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-2001-0488

pcltotiff in HP-UX 10.x has unnecessary set group id permissions, which allows local users to cause a denial of service.

Published: June 27, 2001; 12:00:00 AM -04:00
    V2: 2.1 LOW
CVE-2001-0311

Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.

Published: June 02, 2001; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-2001-0266

Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain privileges.

Published: May 03, 2001; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-2001-0219

Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service.

Published: March 26, 2001; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-2001-1439

Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit.

Published: February 16, 2001; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-2001-0085

Buffer overflow in Kermit communications software in HP-UX 11.0 and earlier allows local users to cause a denial of service and possibly execute arbitrary commands.

Published: February 12, 2001; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-2001-0106

Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of service when the "swait" state is used by a server.

Published: February 12, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1126

Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-1573

Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.

Published: December 28, 1999; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0435

MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.

Published: March 01, 1999; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0353

rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.

Published: February 10, 1999; 12:00:00 AM -05:00
    V2: 9.3 HIGH
CVE-2000-0005

HP-UX aserver program allows local users to gain privileges via a symlink attack.

Published: January 02, 1999; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0779

Denial of service in HP-UX SharedX recserv program.

Published: September 03, 1998; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-1999-0333

HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack.

Published: August 01, 1998; 12:00:00 AM -04:00
    V2: 7.5 HIGH
CVE-1999-1136

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

Published: July 30, 1998; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

Published: April 01, 1998; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0015

Teardrop IP denial of service.

Published: December 16, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

Published: December 16, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0016

Land IP denial of service.

Published: December 01, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM