Compaq: Security Vulnerabilities
msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink attack on the .mh_profile file.
CVSS Score
2.1
EPSS Score
0.002
Published
2001-09-10
Buffer overflow in msgchk in Digital UNIX 4.0G and earlier allows local users to execute arbitrary code via a long command line argument.
CVSS Score
7.2
EPSS Score
0.002
Published
2001-09-10
The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of service.
CVSS Score
6.4
EPSS Score
0.007
Published
2001-07-02
The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via the management port, 2301.
CVSS Score
7.5
EPSS Score
0.004
Published
2001-06-18
Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.
CVSS Score
10.0
EPSS Score
0.02
Published
2001-03-12
inetd in Compaq Tru64 UNIX 5.1 allows attackers to cause a denial of service (network connection loss) by causing one of the services handled by inetd to core dump during startup, which causes inetd to stop accepting connections to all of its services.
CVSS Score
5.0
EPSS Score
0.018
Published
2001-02-23
Compaq Easy Access Keyboard software 1.3 does not properly disable access to custom buttons when the screen is locked, which could allow an attacker to gain privileges or execute programs without authorization.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-12-19
BMC Patrol component, when installed with Compaq Insight Management Agent 4.23 and earlier, or Management Agents for Servers 4.40 and earlier, creates a PFCUser account with a default password and potentially dangerous privileges.
CVSS Score
7.5
EPSS Score
0.007
Published
1999-12-31
Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.50 modifies the legal notice caption (LegalNoticeCaption) and text (LegalNoticeText) in Windows NT, which could produce a legal notice that is in violation of the security policy.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-09-02
Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301.
CVSS Score
6.4
EPSS Score
0.005
Published
1999-06-01