) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/o:hp:hp-ux:b.11.23
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2009-2682 |
Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors. Published: September 24, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
| CVE-2009-0719 |
Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unknown vectors, a different issue than CVE-2008-1660. Published: April 29, 2009; 11:30:00 AM -0400 |
V3.x:(not available) V2.0: 6.0 MEDIUM |
| CVE-2009-0207 |
Unspecified vulnerability in HP-UX B.11.11 running VERITAS Oracle Disk Manager (VRTSodm) 3.5, B.11.23 running VRTSodm 4.1 or VERITAS File System (VRTSvxfs) 4.1, B.11.23 running VRTSodm 5.0 or VRTSvxfs 5.0, and B.11.31 running VRTSodm 5.0 allows local users to gain root privileges via unknown vectors. Published: March 24, 2009; 9:30:00 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2009-0418 |
The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476. Published: February 04, 2009; 2:30:00 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2008-4418 |
Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown vectors. Published: December 11, 2008; 10:30:00 AM -0500 |
V3.x:(not available) V2.0: 7.8 HIGH |
| CVE-2008-1662 |
Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might allow remote attackers to read or modify arbitrary files, related to an "empty systems list." Published: August 01, 2008; 10:41:00 AM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2007-1993 |
Buffer overflow in the pfs_mountd.rpc RPC daemon in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2." Published: April 12, 2007; 6:19:00 AM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2004-0594 |
The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete. Published: July 27, 2004; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 5.1 MEDIUM |