CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 3CVE-2003-1097 – HP-UX 10.x/11.x - RExec Remote 'Username' Flag Local Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-1097
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. • https://www.exploit-db.com/exploits/22552 http://archives.neohapsis.com/archives/bugtraq/2003-04/0374.html http://www.ciac.org/ciac/bulletins/n-088.shtml http://www.kb.cert.org/vuls/id/322540 http://www.kb.cert.org/vuls/id/CRDY-5MJKM4 http://www.securityfocus.com/bid/7459 https://exchange.xforce.ibmcloud.com/vulnerabilities/11890 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5611 •
CVSS: 7.2EPSS: 0%CPEs: 17EXPL: 2CVE-2003-1358 – HP-UX 10.x - rs.F3000 Unauthorized Access
https://notcve.org/view.php?id=CVE-2003-1358
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program. • https://www.exploit-db.com/exploits/22248 http://securityreason.com/securityalert/3236 http://www.securityfocus.com/advisories/4960 http://www.securityfocus.com/archive/1/324381 http://www.securityfocus.com/bid/6837 https://exchange.xforce.ibmcloud.com/vulnerabilities/11312 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.0EPSS: 1%CPEs: 4EXPL: 0CVE-2003-1087
https://notcve.org/view.php?id=CVE-2003-1087
Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic. • http://marc.info/?l=bugtraq&m=109292319608851&w=2 http://secunia.com/advisories/8971 http://www.securityfocus.com/bid/7827 https://exchange.xforce.ibmcloud.com/vulnerabilities/12199 •
CVSS: 2.1EPSS: 0%CPEs: 3EXPL: 0CVE-2003-1099
https://notcve.org/view.php?id=CVE-2003-1099
shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. • http://secunia.com/advisories/10339 http://www.ciac.org/ciac/bulletins/o-032.shtml http://www.kb.cert.org/vuls/id/509454 http://www.kb.cert.org/vuls/id/CRDY-5VFQA3 http://www.securityfocus.com/bid/9141 https://exchange.xforce.ibmcloud.com/vulnerabilities/13882 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5788 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2003-1374
https://notcve.org/view.php?id=CVE-2003-1374
Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options. • http://archives.neohapsis.com/archives/bugtraq/2003-02/0156.html http://www.securityfocus.com/bid/6845 https://exchange.xforce.ibmcloud.com/vulnerabilities/11316 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •