National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:hp:hp-ux:10.01
There are 103 matching records.
Displaying matches 81 through 100.
Vuln ID Summary CVSS Severity
CVE-1999-0326

Vulnerability in HP-UX mediainit program.

Published: October 01, 1997; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-1999-1139

Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.

Published: September 01, 1997; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-0524

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

Published: August 01, 1997; 12:00:00 AM -04:00
    V2: 0.0 LOW
CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Published: May 01, 1997; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

Published: April 26, 1997; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-1408

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.

Published: March 05, 1997; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

Published: February 06, 1997; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0309

HP-UX vgdisplay program gives root access to local users.

Published: February 01, 1997; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1144

Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain privileges.

Published: January 30, 1997; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1088

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges.

Published: January 09, 1997; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1145

Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain privileges.

Published: January 07, 1997; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0127

swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.

Published: December 19, 1996; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1089

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.

Published: December 13, 1996; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

Published: December 03, 1996; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-0050

Buffer overflow in HP-UX newgrp program.

Published: December 01, 1996; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root privileges.

Published: November 16, 1996; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0246

HP Remote Watch allows a remote user to gain root access.

Published: October 01, 1996; 12:00:00 AM -04:00
    V2: 10.0 HIGH
CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

Published: September 11, 1996; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-0324

ppl program in HP-UX allows local users to create root files through symlinks.

Published: September 01, 1996; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-1205

nettune in HP-UX 10.01 and 10.00 is installed setuid root, which allows local users to cause a denial of service by modifying critical networking configuration information.

Published: June 07, 1996; 12:00:00 AM -04:00
    V2: 2.1 LOW