CVE-2007-2553 – HP Tru64 5.0.1 - DOP Command Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-2553
Unspecified vulnerability in dop in HP Tru64 UNIX 5.1B-4, 5.1B-3, and 5.1A PK6 allows local users to gain privileges via a large amount of data in the environment, as demonstrated by a long environment variable. Una vulnerabilidad no especificada en dop en HP Tru64 UNIX versiones 5.1B-4, 5.1B-3 y 5.1A PK6 permite a los usuarios locales alcanzar privilegios por medio de una gran cantidad de datos en el entorno, como es demostrado por una variable de entorno larga. • https://www.exploit-db.com/exploits/30017 http://osvdb.org/36203 http://secunia.com/advisories/25197 http://www.orkaan.org/tru64/orkaan_-_exp_Tru64-5.X_SSRT071326.html http://www.securityfocus.com/archive/1/468103/100/0/threaded http://www.securityfocus.com/bid/23881 http://www.securitytracker.com/id?1018021 http://www.vupen.com/english/advisories/2007/1715 https://exchange.xforce.ibmcloud.com/vulnerabilities/34175 https://www2.itrc.hp.com/service/cki/docDisplay.do?d •
CVE-2007-0805 – HP Tru64 Alpha OSF1 5.1 - 'ps' Information Leak
https://notcve.org/view.php?id=CVE-2007-0805
The ps (/usr/ucb/ps) command on HP Tru64 UNIX 5.1 1885 allows local users to obtain sensitive information, including environment variables of arbitrary processes, via the "auxewww" argument, a similar issue to CVE-1999-1587. El comando ps (/usr/ucb/ps) en el HP Tru64 UNIX 5.1 1885 permite a usuarios locales obtener información sensible incluyendo variables de entorno de procesos de su elección, mediante el argumento "auxewww". Similar a la vulnerabilidad CVE-1999-1587. • https://www.exploit-db.com/exploits/3273 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00817515 http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052227.html http://osvdb.org/33113 http://rawlab.mindcreations.com/codes/exp/nix/osf1tru64ps.ksh http://secunia.com/advisories/24041 http://secunia.com/advisories/25135 http://securitytracker.com/id?1017592 http://www.securityfocus.com/archive/1/459266/100/0/threaded http://www.securityfocus.com/ar •
CVE-2006-6418
https://notcve.org/view.php?id=CVE-2006-6418
Buffer overflow in the POSIX Threads library (libpthread) on HP Tru64 UNIX 4.0F PK8, 4.0G PK4, and 5.1A PK6 allows local users to gain root privileges via a long PTHREAD_CONFIG environment variable. Desbordamiento de búfer en la biblioteca POSIX Threads (libpthread) sobre HP Tru64 UNIX 4.0F PK8, 4.0G PK4, y 5.1A PK6 permite a un usuario local ganar privilegios de root a través de una variable de entorno PTHREAD_CONFIG larga. • http://secunia.com/advisories/22743 http://securitytracker.com/id?1017211 http://www.netragard.com/pdfs/research/HP-TRU64-LIBPTHREAD-20060811.txt http://www.securityfocus.com/bid/21035 http://www.vupen.com/english/advisories/2006/4483 http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00800193 https://exchange.xforce.ibmcloud.com/vulnerabilities/30178 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2006-5452
https://notcve.org/view.php?id=CVE-2006-5452
Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument. Desbordamiento de búfer en dtmail en HP Tru64 UNIX 4.0F hasta 5.1B, y HP-UX B.11.00 hasta B.11.23 permite a usuarios locales ejecutar código de su elección mediante un argumento -a (o attachment) muy largo. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00793091 http://secunia.com/advisories/22451 http://secunia.com/advisories/22528 http://securitytracker.com/id?1017083 http://securitytracker.com/id?1017098 http://securitytracker.com/id?1017099 http://www.netragard.com/pdfs/research/HP-TRU64-DTMAIL-20060810.txt http://www.securityfocus.com/archive/1/449321/100/0/threaded http://www.securityfocus.com/bid/20580 http://www.vupen.com/english/advisories/2006/4139 http •
CVE-2005-2993
https://notcve.org/view.php?id=CVE-2005-2993
Unspecified vulnerability in the FTP Daemon (ftpd) for HP Tru64 UNIX 4.0F PK8 and other versions up to HP Tru64 UNIX 5.1B-3, and HP-UX B.11.00, B.11.04, B.11.11, and B.11.23, allows remote authenticated users to cause a denial of service (hang). • http://secunia.com/advisories/18543 http://secunia.com/advisories/18569 http://securityreason.com/securityalert/360 http://securitytracker.com/id?1015506 http://support.avaya.com/elmodocs2/security/ASA-2006-018.htm http://www.securityfocus.com/archive/1/422391/100/0/threaded http://www.securityfocus.com/bid/16316 http://www.vupen.com/english/advisories/2005/1801 http://www.vupen.com/english/advisories/2006/0264 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01227& •