Search Results (534 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2004-0965 1 Hp 1 Hp-ux 2026-04-16 N/A
stmkfont in HP-UX B.11.00 through B.11.23 relies on the user-specified PATH when executing certain commands, which allows local users to execute arbitrary code by modifying the PATH environment variable to point to malicious programs.
CVE-2004-0952 1 Hp 1 Hp-ux 2026-04-16 N/A
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption.
CVE-2001-0249 3 Hp, Oracle, Sgi 3 Hp-ux, Solaris, Irix 2026-04-16 9.8 Critical
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
CVE-1999-1160 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges.
CVE-2001-0219 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users to cause a denial of service.
CVE-2004-0809 8 Apache, Debian, Gentoo and 5 more 12 Http Server, Debian Linux, Linux and 9 more 2026-04-16 N/A
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
CVE-1999-1573 1 Hp 1 Hp-ux 2026-04-16 N/A
Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.
CVE-1999-0022 6 Bsdi, Freebsd, Hp and 3 more 7 Bsd Os, Freebsd, Hp-ux and 4 more 2026-04-16 7.8 High
Local user gains root privileges via buffer overflow in rdist, via expstr() function.
CVE-2000-0005 1 Hp 3 9000, Aserver, Hp-ux 2026-04-16 N/A
HP-UX aserver program allows local users to gain privileges via a symlink attack.
CVE-1999-0127 1 Hp 1 Hp-ux 2026-04-16 N/A
swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.
CVE-1999-0325 1 Hp 1 Hp-ux 2026-04-16 N/A
vhe_u_mnt program in HP-UX allows local users to create root files through symlinks.
CVE-1999-0040 7 Bsdi, Freebsd, Hp and 4 more 10 Bsd Os, Freebsd, Hp-ux and 7 more 2026-04-16 N/A
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVE-2000-0083 1 Hp 1 Hp-ux 2026-04-16 N/A
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.
CVE-2000-0159 1 Hp 1 Hp-ux 2026-04-16 N/A
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
CVE-2000-0251 1 Hp 2 Hp-ux, Vvos 2026-04-16 N/A
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.
CVE-2000-0515 1 Hp 1 Hp-ux 2026-04-16 N/A
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
CVE-1999-0308 1 Hp 1 Hp-ux 2026-04-16 N/A
HP-UX gwind program allows users to modify arbitrary files.
CVE-2000-0095 1 Hp 1 Hp-ux 2026-04-16 N/A
The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.
CVE-2000-0468 1 Hp 1 Hp-ux 2026-04-16 N/A
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
CVE-1999-0696 2 Hp, Sun 3 Hp-ux, Solaris, Sunos 2026-04-16 N/A
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).