| | HP-UX System Administration Manager privilege escalation
|
 | | |
| | Symantec Veritas Backup Exec code execution
|
| | It's possible to execute privileged command remotely. |
| | HP-UX Dynamic Loader Privilege Escalation
|
| | |
| | HP-UX DoS
|
| | DoS against threaded applicatons. |
| | HP-UX Software Distributor privilege escalation |
| | | |
| 7! | Hewlett Packard applications multiple security vulnerabilities
updated since 18.07.2010
|
| | >20 vulnerabilities in different applications are fixed. |
| 7! | HP-UX, IBM AIX, SGI IRIX rpc.pcnfsd format string vulnerability
|
| | Format string vulnerability on syslog() call. |
| | HP-UX NFS/ONCplus DoS |
| | | |
| | HP-UX DoS |
| | | |
| | HP-UX bootpd DoS |
| | | |
| | HP-UX useradd privilege escalation |
| | | |
| | HP UX Veritas File System (VRTSvxfs) privilege escalation |
| | | |
| 7! | HP-UX IPv6 multiple security vulnerabilities
|
| | Unauthorized access, Denial of Service. |
| 7! | HP-UX unauthorized access with ftp server |
| | | |
| 6! | HP-UX System Administration Manager unauthorized access |
| | | |
| 6! | HP-UX useradd privilege escalation |
| | | |
| 6! | HP-UX WBEM multiple security vulnerabilities
|
| | Code execution, privilege escalation. |
| | Weak initial sequence number generation
updated since 03.05.2001
|
| | Weak initial sequence number generation allows to spoof TCP connection. |
| | HP-UX ARPA transport DoS
updated since 15.02.2007 |
| | | |
| | HP-UX rpc.yppasswdd DoS |
| | | |
| 6! | HP-UX swagentd buffer overflow
|
| | Buffer overflow in sw_rpc_agent_init RPC function. |
| | HP System Management Homepage crossite scripting |
| | | |
| | HP-UX get_system_info privilege escalation
|
| | It's possible to change system configuration with get_system_info if Ignite-UX or the DynRootDisk (DRD) are installed. |
| 6! | HP-UX HP Controller for Cisco Local Director daemon buffer overflow
|
| | Buffer overflow in ldconn on parsing TCP/17781 traffic. |
| 6! | HP-UX pfs_mountd.rpc PFS file system daemon buffer overflow
|
| | Buffer overflow on UDP datagrams parsing. |
| 6! | HP-UX SLSd unauthorized access
|
| | It's possible to create any file with attacker-supplied data. |
| 8! | Unzuthorized file access via file stdio decriptors in multiple Unix systems
updated since 22.04.2002
|
| | By exhausting all file descriptors and closing stderr it's possible to causesituation called application will open new file with descriptor 2 and all stderr output will be redirected to file. In few systems it's enougth to close standard descriptor. |
| | HP-UX WBEM DoS |
| | | |
| | HP-UX privilege escalation |
| | | |
| | HP Tru64 dtmail buffer overflow
|
| | Buffer overflow on -a flag parsing. |
| | HP-UX TCP/IP DoS |
| | | |
| | HP-UX SLP unauthorized access
|
| | Unauthorized Service Locator Protocol access. |
| 6! | HP Ignite-UX Server unauthorized access |
| | | |
| | HP-UX CIFS Server privilege scalation |
| | | |
| | HP-UX ARPA Transport Software DoS |
| | | |
| | HP-UX usermod file ownership change
|
| | usermod -d <dir> -u <new uid> -m <username>
command causes username to became owner for dir directory recursively. |
| | HP-UX LP Subsystem DoS |
| | | |
| | HP-UX DoS
|
| | Support Tools Manager DoS, Trusted Mode DoS. |
| 6! | Multiple HP-UX utilities security vulnerabilities
|
| | 'mkdir' privilege escalation, 'passwd' DoS. |
| | HP-UX DoS |
| | | |
| | HP-UX Support Tools Manager |
| | | |
| | HP-UX Secure Shell DoS |
| | | |
| 6! | HP-UX Software Distributor unauthorized access
updated since 20.12.2005 |
| | | |
| | HP-UX xterm unauthorized access |
| | | |
| | Multiple HP-UX vulnerabilities
|
| | It's possible to change file permissions recursively with 'usermod'. DoS with 'passwd'. |
| | HP-UX swagentd DoS
updated since 24.03.2006 |
| | | |
| | HP-UX xterm privilege escalation
updated since 15.11.2005 |
| | | |
| 6! | Multiple OSs, routers and firewalls IPSec ISAKMP IKE DoS
updated since 14.11.2005
|
| | Multiple vulnerabilities detected with PROTOS IPSec security scanner. |
| 7! | Multiple HP-UX vulnerabilities
|
| | IP packets DoS, IPSec remote unauthorized access. |
| | HP-UX lpd buffer overflow (outdated)
|
| | Buffer overflow on LPR protocol parsing. |
| 6! | ICMP and TCP timestamp attacks to reset TCP connections
updated since 13.04.2005
|
| | By using different ICMP packet types and TCP timestamps values it's possible to cause TCP connection resets or performance decrease. |
| | HP-UX Veritas file system unauthorized access |
| | | |
| 6! | Unauthorized HP-UX remshd access |
| | | |
| | HP-UX ftpd FTP server multiple vulnerabilities
updated since 22.12.2004
|
| | Buffer overflow in debug mode, unauthorized files access. |
| 6! | Netscape Directory Server buffer overflow
updated since 24.12.2004
|
| | LDAP buffer overflow. |
| | HP-UX SAM privilege escalation |
| | | |
| 6! | HP-UX Serviceguard privilege escalation |
| | | |
| | HP-UX stmkfonts privilege escalation
|
| | External program is called with relative path. |
| 9! | Netscape NSS libraries buffer overflow
updated since 25.08.2004
|
| | Buffer overflow during SSL negotiation. |
| | HP-UX network applications DoS |
| | | |
| 8! | HP-UX CIFS (Samba) buffer overflow
|
| | Buffer overflow leads to unauthorized remote access. |
| 6! | HP Tru64 UNIX/OpenVMS/HP-UX DCE server buffer overflow
updated since 26.06.2004
|
| | Buffer overflow on RPC parsing. |
| | HP-UX ObAM WebAdmin unauthorized access |
| | | |
| 7! | HP-UX FTP code execution
|
| | It's possiblt to execute application on server by specifing '|' in filename. |
| 7! | dtlogin buffer overflow
updated since 24.03.2004
|
| | Buffer overflow during XDMCP parsing. |
| | HP-UX GTK+ weak permissions
|
| | World-writable directory. |
| 6! | IBM AIX libIM buffer overflow
updated since 14.02.2003
|
| | Buffer overflow on NLS functions. |
| | HP-UX Software Distributor buffer overflow
|
| | Buffer overflow on LANG variable parsing. |
| 6! | Multiple SNMP problems
updated since 13.02.2002
|
| | Multiple problems in different SNMP implementation can lead to DoS, remote code execution, etc. |
| | HP-UX ftpd REST bug
|
| | Because of a bug in REST processing value given is treated as a memory address. It makes it possible to read any memory block. |
| | HP-UX IGMP DoS |
| | | |
| 7! | yellow pages unauthorized access
updated since 10.10.2002
|
| | Vulnerabilities in ypserv and ypxfrd allows file system access with root privileges. |
| 7! | Multiple bugs in CDE ToolTalk
updated since 11.07.2002
|
| | Incomplete input validation in different remote calls. |
| | Buffer overflow in HP-UX cifslogin
updated since 24.06.2002
|
| | Buffer overflow on oversized -P option. |
| 7! | Buffer overflow in CDE dtprintinfo
|
| | Buffer overflow in HELP subsistem. |
| 8! | Удаленный root через rlpdaemon в HP-UX (code execution)
updated since 21.11.2001 |
| | | |
| 9! | Переполнение буфера в службе dtspcd в CDE (buffer overflow) |
| | | |
| 9! | Ошибка форматной строки в ToolTalk rpc.ttdbserverd (format string) |
| | | |
| 8! | Переполнения буфера в утилитах sw* HP-UX (buffer overflow) |
| | | |
| 8! | Переполнение буфера в rlpdaemon под HP-UX (buffer overflow) |
| | | |
| | Проблема с login в HP (shell access) |
| | | |
| | |
