Hp: Security Vulnerabilities
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
CVSS Score
10.0
EPSS Score
0.015
Published
2000-06-07
Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.
CVSS Score
10.0
EPSS Score
0.014
Published
2000-06-06
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
CVSS Score
4.6
EPSS Score
0.003
Published
2000-06-02
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVSS Score
7.5
EPSS Score
0.044
Published
2000-05-24
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.
CVSS Score
5.0
EPSS Score
0.052
Published
2000-05-24
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-05-04
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-04-18
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.
CVSS Score
5.0
EPSS Score
0.014
Published
2000-04-06
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
CVSS Score
7.2
EPSS Score
0.188
Published
2000-03-02
HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555.
CVSS Score
5.0
EPSS Score
0.105
Published
2000-02-28