| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges. |
| Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code. |
| Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges. |
| Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver. |
| Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges. |
| Unspecified vulnerability in the kernel in HP-UX B.11.00 allows local users to cause an unspecified denial of service via unknown vectors. |
| Buffer overflow in mailcv in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. |
| ftp on HP-UX 11.00 allows local users to gain privileges. |
| Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. |
| HP-UX gwind program allows users to modify arbitrary files. |
| Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. |
| Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. |
| A Unix account has a default, null, blank, or missing password. |
| swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access. |
| Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. |
| HP CDE program includes the current directory in root's PATH variable. |
| Denial of service in HP-UX SharedX recserv program. |
| Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option. |
| Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. |
| The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete. |