Search Results (Refine Search)
- CPE Product Version: cpe:/o:hp:hp-ux:b.11.31
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2016-2775 |
ISC BIND 9.x before 9.9.9-P2, 9.10.x before 9.10.4-P2, and 9.11.x before 9.11.0b2, when lwresd or the named lwres option is enabled, allows remote attackers to cause a denial of service (daemon crash) via a long request that uses the lightweight resolver protocol. Published: July 19, 2016; 6:59:00 PM -0400 |
V3.1: 5.9 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-4000 |
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue. Published: May 20, 2015; 8:59:00 PM -0400 |
V3.0: 3.7 LOW V2.0: 4.3 MEDIUM |
CVE-2014-7879 |
HP HP-UX B.11.11, B.11.23, and B.11.31, when the PAM configuration includes libpam_updbe, allows remote authenticated users to bypass authentication, and consequently execute arbitrary code, via unspecified vectors. Published: December 10, 2014; 4:59:13 PM -0500 |
V3.x:(not available) V2.0: 8.5 HIGH |
CVE-2014-7877 |
Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors. Published: October 30, 2014; 6:55:06 AM -0400 |
V3.x:(not available) V2.0: 4.9 MEDIUM |
CVE-2014-7874 |
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 3.2.3 on HP-UX B.11.23, and before 3.2.8 on HP-UX B.11.31, allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Published: October 18, 2014; 9:55:21 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2014-2490 |
Unspecified vulnerability in the Java SE component in Oracle Java SE 7u60 and SE 8u5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. Published: July 17, 2014; 1:10:14 AM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2013-6219 |
Unspecified vulnerability in HP HP-UX Whitelisting (aka WLI) before A.01.02.02 on HP-UX B.11.31 allows local users to bypass intended access restrictions via unknown vectors. Published: April 19, 2014; 5:55:06 PM -0400 |
V3.x:(not available) V2.0: 3.8 LOW |
CVE-2013-6200 |
Unspecified vulnerability in m4 in HP HP-UX B.11.23 and B.11.31 allows local users to obtain sensitive information or modify data via unknown vectors. Published: March 11, 2014; 9:01:04 AM -0400 |
V3.x:(not available) V2.0: 6.2 MEDIUM |
CVE-2013-5870 |
Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX. Published: January 15, 2014; 11:11:04 AM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2014-0418 |
Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, and CVE-2014-0424. Published: January 15, 2014; 11:08:10 AM -0500 |
V3.x:(not available) V2.0: 5.1 MEDIUM |
CVE-2014-0382 |
Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect availability via unknown vectors related to JavaFX. Published: January 15, 2014; 11:08:07 AM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2013-5906 |
Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5905. Published: January 15, 2014; 11:08:06 AM -0500 |
V3.x:(not available) V2.0: 5.1 MEDIUM |
CVE-2013-5904 |
Unspecified vulnerability in Oracle Java SE 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Published: January 15, 2014; 11:08:06 AM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2013-5895 |
Unspecified vulnerability in Oracle Java SE 7u45 and JavaFX 2.2.45 allows remote attackers to affect confidentiality via unknown vectors related to JavaFX. Published: January 15, 2014; 11:08:06 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2013-4854 |
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013. Published: July 29, 2013; 9:59:37 AM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
CVE-2011-4159 |
Unspecified vulnerability in System Administration Manager (SAM) in EMS before A.04.20.11.04_01 on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. Published: November 18, 2011; 10:58:55 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2011-2398 |
Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors. Published: July 11, 2011; 4:55:01 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2011-0896 |
Unspecified vulnerability in HP NFS/ONCplus B.11.31.10 and earlier on HP-UX B.11.31 allows remote authenticated users to cause a denial of service via unknown vectors. Published: April 14, 2011; 8:55:01 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2011-0891 |
Unspecified vulnerability in the OS-Core.CORE2-KRN fileset in HP HP-UX B.11.23 and B.11.31 allows local users to cause a denial of service via unknown vectors. Published: April 04, 2011; 8:27:56 AM -0400 |
V3.x:(not available) V2.0: 4.4 MEDIUM |
CVE-2010-4108 |
HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors. Published: December 08, 2010; 1:00:04 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |