Hp: >> Hp-Ux >> b.11.22 Security Vulnerabilities
The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.
CVSS Score
5.1
EPSS Score
0.78
Published
2004-07-27
HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack.
CVSS Score
7.5
EPSS Score
0.013
Published
1998-08-01
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.
CVSS Score
5.0
EPSS Score
0.036
Published
1997-12-16
swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.
CVSS Score
7.2
EPSS Score
0.001
Published
1996-12-19
HP Remote Watch allows a remote user to gain root access.
CVSS Score
10.0
EPSS Score
0.007
Published
1996-10-01
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
CVSS Score
1.9
EPSS Score
0.001
Published
1996-04-18
Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
1994-06-01
HP ypbind allows attackers with root privileges to modify NIS data.
CVSS Score
5.0
EPSS Score
0.019
Published
1993-01-13
Page 5