National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:hp:hp-ux:11.00
There are 206 matching records.
Displaying matches 181 through 200.
Vuln ID Summary CVSS Severity
CVE-1999-0688

Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.

Published: July 01, 1999; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-1999-0696

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).

Published: July 01, 1999; 12:00:00 AM -04:00
    V2: 10.0 HIGH
CVE-1999-0432

ftp on HP-UX 11.00 allows local users to gain privileges.

Published: March 01, 1999; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-0435

MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.

Published: March 01, 1999; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0436

Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges.

Published: March 01, 1999; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-0353

rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.

Published: February 10, 1999; 12:00:00 AM -05:00
    V2: 9.3 HIGH
CVE-2000-0005

HP-UX aserver program allows local users to gain privileges via a symlink attack.

Published: January 02, 1999; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0779

Denial of service in HP-UX SharedX recserv program.

Published: September 03, 1998; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-1999-0333

HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack.

Published: August 01, 1998; 12:00:00 AM -04:00
    V2: 7.5 HIGH
CVE-1999-1136

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

Published: July 30, 1998; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM
CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd program.

Published: June 08, 1998; 12:00:00 AM -04:00
    V2: 10.0 HIGH
CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

Published: April 01, 1998; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0014

Unauthorized privileged access or denial of service via dtappgather program in CDE.

Published: January 21, 1998; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

Published: January 05, 1998; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0015

Teardrop IP denial of service.

Published: December 16, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

Published: December 16, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0016

Land IP denial of service.

Published: December 01, 1997; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

Published: October 29, 1997; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-1139

Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.

Published: September 01, 1997; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-0524

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

Published: August 01, 1997; 12:00:00 AM -04:00
    V2: 0.0 LOW