HP Security Vulnerabilities

CVE-1999-0057

Vacation program allows command execution by remote users through a sendmail...

CVE-1999-0779

Denial of service in HP-UX SharedX recserv...

CVE-1999-0333

HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink...

CVE-1999-1433

HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a symlink attack on the /tmp/jetadmin.log...

CVE-1999-0007

Information from SSL-encrypted sessions via PKCS...

CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd...

CVE-1999-0551

HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print...

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server...

CVE-1999-0502

A Unix account has a default, null, blank, or missing...

CVE-1999-0014

Unauthorized privileged access or denial of service via dtappgather program in...

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of...

CVE-1999-0004

MIME buffer overflow in email clients, e.g. Solaris mailtool and...

CVE-1999-0015

Teardrop IP denial of...

CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a....

CVE-1999-0016

Land IP denial of...

CVE-1999-0306

buffer overflow in HP xlock...

CVE-1999-0216

Denial of service of inetd on Linux through SYN and RST...

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe...

CVE-1999-1062

HP Laserjet printers with JetDirect cards, when configured with TCP/IP, allow remote attackers to bypass print filters by directly sending PostScript documents to TCP ports 9099 and...

CVE-1999-1061

HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect to the printer and change its IP address or disable...

CVE-1999-0326

Vulnerability in HP-UX mediainit...

CVE-1999-1213

Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of...

CVE-1999-1133

HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate...

CVE-1999-1308

Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain...

CVE-1999-0962

Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line...

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root...

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as...

CVE-1999-1408

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on...

CVE-1999-0318

Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental...

CVE-1999-1160

Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root...

CVE-1999-0309

HP-UX vgdisplay program gives root access to local...

CVE-1999-1088

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain...

CVE-1999-1145

Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain...

CVE-1999-1311

Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain...

CVE-1999-0517

An SNMP community name is the default (e.g. public), null, or...

CVE-1999-1251

Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of...

CVE-1999-0127

swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root...

CVE-1999-1089

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line...

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include:...

CVE-1999-0050

Buffer overflow in HP-UX newgrp...

CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root...

CVE-1999-0311

fpkg2swpk in HP-UX allows local users to gain root...

CVE-1999-0336

Buffer overflow in mstm in HP-UX allows local users to gain root...

CVE-1999-0246

HP Remote Watch allows a remote user to gain root...

CVE-1999-0308

HP-UX gwind program allows users to modify arbitrary...

CVE-1999-0961

HPUX sysdiag allows local users to gain root privileges via a symlink attack during log file...

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local...

CVE-1999-0324

ppl program in HP-UX allows local users to create root files through...

CVE-1999-0132

Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root...

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr()...