The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
CVSS Score
10.0
EPSS Score
0.914
Published
2000-07-07
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
CVSS Score
10.0
EPSS Score
0.015
Published
2000-06-07
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
CVSS Score
4.6
EPSS Score
0.003
Published
2000-06-02
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-05-04
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
CVSS Score
7.5
EPSS Score
0.007
Published
2000-02-17
The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.
CVSS Score
5.0
EPSS Score
0.005
Published
2000-01-24
Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.
CVSS Score
10.0
EPSS Score
0.009
Published
1999-12-28
Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-07-01
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).
CVSS Score
10.0
EPSS Score
0.056
Published
1999-07-01
ftp on HP-UX 11.00 allows local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-03-01