Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

hp hp-ux 11.20 vulnerabilities and exploits

(subscribe to this query)
4.6
CVSSv2
CVE-2001-1509
geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges.
Hp Hp-ux 11.20
7.2
CVSSv2
CVE-2003-1097
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.
Hp Hp-ux 10.30Hp Hp-ux 10.34Hp Hp-ux 10.20Hp Hp-ux 10.24Hp Hp-ux 10.26Hp Hp-ux 11.22Hp Hp-ux 11.00Hp Hp-ux 11.04Hp Hp-ux 10.10Hp Hp-ux 10.16Hp Hp-ux 11.11Hp Hp-ux 11.20
7.2
CVSSv2
CVE-2003-1358
rs.F300 for HP-UX 10.0 up to and including 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
Hp Hp-ux 10.16Hp Hp-ux 10.20Hp Hp-ux 11.04Hp Hp-ux 11.11Hp Hp-ux 10.09Hp Hp-ux 10.10Hp Hp-ux 11.0.4Hp Hp-ux 11.00Hp Hp-ux 10.00Hp Hp-ux 10.24Hp Hp-ux 10.26Hp Hp-ux 11.20Hp Hp-ux 11.22Hp Hp-ux 10.01Hp Hp-ux 10.08Hp Hp-ux 10.30Hp Hp-ux 10.34
7.2
CVSSv2
CVE-2003-1359
Buffer overflow in stmkfont utility of HP-UX 10.0 up to and including 11.22 allows local users to gain privileges via a long command line argument.
Hp Hp-ux 10.10Hp Hp-ux 10.16Hp Hp-ux 11.04Hp Hp-ux 11.11Hp Hp-ux 10.08Hp Hp-ux 10.09Hp Hp-ux 11.0.4Hp Hp-ux 11.00Hp Hp-ux 10.20Hp Hp-ux 10.24Hp Hp-ux 11.20Hp Hp-ux 11.22Hp Hp-ux 10.00Hp Hp-ux 10.01Hp Hp-ux 10.26Hp Hp-ux 10.30Hp Hp-ux 10.34Avaya Predictive Dialer System 12Avaya Predictive Dialer System 9.0Avaya Predictive Dialer System 11
6.9
CVSSv2
CVE-2004-0940
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.
Openpkg Openpkg 2.0Openpkg Openpkg 2.1Openpkg Openpkg 2.2Apache Http ServerSlackware Slackware Linux 9.0Slackware Slackware Linux 8.1Slackware Slackware Linux 10.0Hp Hp-ux 11.11Suse Suse Linux 9.2Suse Suse Linux 9.0Slackware Slackware Linux 8.0Suse Suse Linux 8.2Slackware Slackware Linux 9.1Slackware Slackware Linux CurrentSuse Suse Linux 8.0Trustix Secure Linux 1.5Hp Hp-ux 11.00Hp Hp-ux 11.22Suse Suse Linux 9.1Hp Hp-ux 11.20Suse Suse Linux 8.1
10
CVSSv2
CVE-2003-0161
The prescan() function in the address parser (parseaddr.c) in Sendmail prior to 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" co...
Sendmail Sendmail 2.6Sendmail Sendmail 8.10Sendmail Sendmail 8.10.1Sendmail Sendmail 8.11.6Sendmail Sendmail 8.12.0Sendmail Sendmail 8.12.7Sendmail Sendmail 8.12.8Sendmail Sendmail 8.9.1Sendmail Sendmail 8.9.2Sendmail Sendmail Switch 2.2Sendmail Sendmail Switch 2.2.1Sendmail Sendmail Switch 3.0.2Sendmail Sendmail Switch 3.0.3Sendmail Sendmail 3.0Sendmail Sendmail 3.0.1Sendmail Sendmail 8.11.1Sendmail Sendmail 8.11.2Sendmail Sendmail 8.11.3Sendmail Sendmail 8.12.3Sendmail Sendmail 8.12.4Sendmail Sendmail 8.12Sendmail Sendmail Switch 2.1.1
7.5
CVSSv2
CVE-2003-0064
The dtterm terminal emulator allows malicious users to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the...
Sgi Irix 5.0Sgi Irix 6.0.1Sgi Irix 6.1Sgi Irix 6.5.10mSgi Irix 6.5.11Sgi Irix 6.5.13fSgi Irix 6.5.13mSgi Irix 6.5.16Sgi Irix 6.5.16fSgi Irix 6.5.16mSgi Irix 6.5.2Sgi Irix 6.5.2fSgi Irix 6.5.4mSgi Irix 6.5.5Sgi Irix 6.5.7fSgi Irix 6.5.7mSgi Irix 6.5.8Sgi Irix 5.0.1Sgi Irix 5.1Sgi Irix 6.2Sgi Irix 6.3Sgi Irix 6.4
10
CVSSv2
CVE-2003-0196
Multiple buffer overflows in Samba prior to 2.2.8a may allow remote malicious users to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
Samba-tng Samba-tng 0.3Samba-tng Samba-tng 0.3.1Samba Samba 2.0.5Samba Samba 2.0.6Samba Samba 2.2.3Samba Samba 2.2.3aSamba Samba 2.0.0Samba Samba 2.0.1Samba Samba 2.0.7Samba Samba 2.0.8Samba Samba 2.0.9Samba Samba 2.2.4Samba Samba 2.2.5Samba Samba 2.0.10Samba Samba 2.0.2Samba Samba 2.2.0Samba Samba 2.2.0aSamba Samba 2.2.6Samba Samba 2.2.7Samba Samba 2.0.3Samba Samba 2.0.4Samba Samba 2.2.1a
10
CVSSv2
CVE-2003-0201
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x prior to 2.2.8a, 2.0.10 and previous versions 2.0.x versions, and Samba-TNG prior to 0.3.2, allows remote malicious users to execute arbitrary code.
Samba Samba 2.0.3Samba Samba 2.0.4Samba Samba 2.2.1aSamba Samba 2.2.3aSamba Samba 2.0.10Samba Samba 2.0.2Samba Samba 2.2.0Samba Samba 2.2.0aSamba Samba 2.2.7aSamba Samba 2.2.8Samba-tng Samba-tng 0.3Samba-tng Samba-tng 0.3.1Samba Samba 2.0.5Samba Samba 2.0.6Samba Samba 2.0.7Samba Samba 2.2.4Samba Samba 2.2.5Samba Samba 2.0.0Samba Samba 2.0.1Samba Samba 2.0.8Samba Samba 2.0.9Samba Samba 2.2.6
7.5
CVSSv2
CVE-2003-0028
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote malicious users to execute arbitrary code via certain integer values i...
Gnu Glibc 2.1.1Gnu Glibc 2.1.2Gnu Glibc 2.3Gnu Glibc 2.3.1Mit Kerberos 5 1.2.5Mit Kerberos 5 1.2.6Openafs Openafs 1.0.4aOpenafs Openafs 1.1Openafs Openafs 1.2.3Openafs Openafs 1.2.4Sgi Irix 6.5.1Sgi Irix 6.5.10Sgi Irix 6.5.12fSgi Irix 6.5.12mSgi Irix 6.5.13Sgi Irix 6.5.15fSgi Irix 6.5.15mSgi Irix 6.5.18Sgi Irix 6.5.18fGnu Glibc 2.1.3Gnu Glibc 2.2Gnu Glibc 2.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook