CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2008-0212
https://notcve.org/view.php?id=CVE-2008-0212
06 Feb 2008 — ovtopmd in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allows remote attackers to cause a denial of service (crash) via a crafted TCP request that triggers an out-of-bounds memory access. ovtopmd en HP OpenView Network Node Manager (OV NNM) versiones 6.41, 7.01 y 7.51, permite a los atacantes remotos causar una denegación de servicio (bloqueo) por medio de una petición TCP diseñada que desencadena un acceso de memoria fuera de límites. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=652 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0CVE-2007-6419
https://notcve.org/view.php?id=CVE-2007-6419
24 Dec 2007 — Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. Vulnerabilidad no especificada en rpc.yppasswdd en HP HP-UX B.11.11, B.11.23, y B.11.31 permite a atacantes remotos provocar denegación de servicio (caida de demonio) a través de vectores no especificados. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01294324 •
CVSS: 10.0EPSS: 23%CPEs: 2EXPL: 0CVE-2007-6195 – Hewlett-Packard HP-UX swagentd Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-6195
15 Dec 2007 — Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request. Un desbordamiento de búfer en la función sw_rpc_agent_init en swagentd en Software Distributor (SD) y posiblemente en otras aplicaciones DCE, en HP HP-UX versiones B.11.11 y B.11.23, permite a los atacantes remoto... • http://secunia.com/advisories/28087 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2007-5536
https://notcve.org/view.php?id=CVE-2007-5536
18 Oct 2007 — Unspecified vulnerability in OpenSSL before A.00.09.07l on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to cause a denial of service via unspecified vectors. Vulnerabilidad sin especificar en el OpenSSL anterior al A.00.09.07l en el HP-UX B.11.11, B.11.23 y B.11.31 permite a usuarios locales provocar una denegación de servicio a través de vectores sin especificar. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01203958 •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2007-5302
https://notcve.org/view.php?id=CVE-2007-5302
09 Oct 2007 — Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de tipo cross-site scripting (XSS) en HP System Management Homepage (SMH) en HP-UX versiones B.11.11, B.11.23 y B.11.31, y SMH versiones anteriores a 2.1.10 para Linux y Windows, permiten a atacantes remotos inyectar scrip... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01183265 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 1%CPEs: 3EXPL: 0CVE-2007-5008
https://notcve.org/view.php?id=CVE-2007-5008
20 Sep 2007 — The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not correctly report password status, which allows remote attackers to obtain privileges when certain "password issues" are not detected. El comando logins en HP-UX versiones B.11.31, B.11.23 y B.11.11, no reporta correctamente el estado de la contraseña, lo que permite a atacantes remotos alcanzar privilegios cuando no son detectados ciertos "password issues". • http://secunia.com/advisories/26873 • CWE-287: Improper Authentication •
CVSS: 8.8EPSS: 0%CPEs: 13EXPL: 0CVE-2007-4590
https://notcve.org/view.php?id=CVE-2007-4590
29 Aug 2007 — The get_system_info command in Ignite-UX C.7.0 through C.7.3, and DynRootDisk (DRD) A.1.0.16.417 through A.2.0.0.592, on HP-UX B.11.11, B.11.23, and B.11.31 does not inform local users of networking changes made by the command, which has unknown impact and attack vectors. El comando get_system_info de Ignite-UX C.7.0 hasta C.7.3, y DynRootDisk (DRD) A.1.0.16.417 hasta A.2.0.0.5.92, en HP-UX B.11.11, B.11.23, y B.11.31 no informa a los usuarios locales de cambios de red realizados por el comando, lo cual tie... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01118367 •
CVSS: 10.0EPSS: 14%CPEs: 2EXPL: 0CVE-2007-4241
https://notcve.org/view.php?id=CVE-2007-4241
08 Aug 2007 — Buffer overflow in ldcconn in Hewlett-Packard (HP) Controller for Cisco Local Director on HP-UX 11.11i allows remote attackers to execute arbitrary code via a long string to TCP port 17781. Desbordamiento de búfer en ldcconn de Hewlett-Packard (HP) Controller para Cisco Local Director en HP-UX 11.11i permite a atacantes remotos ejecutar código de su elección mediante una cadena larga al puerto TCP 17781. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=572 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2007-4179
https://notcve.org/view.php?id=CVE-2007-4179
08 Aug 2007 — Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors. NOTE: this is probably different from CVE-2007-0916, but this is not certain due to lack of vendor details. Vulnerabilidad no especificada la funcionalidad de transporte Address and Routing Parameter Area (ARPA) de HP-UX B.11.11 y B.11.23 permite a usuarios locales provocar una denegación de servicio ... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01090656 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2007-4125
https://notcve.org/view.php?id=CVE-2007-4125
01 Aug 2007 — Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause an unspecified denial of service via unknown vectors. Vulnerabilidad no especificada en la funcionalidad de transporte Address and Routing Parameter Area (ARPA) de HP-UX B.11.11, B.11.23, y B.11.31 permite a atacantes remotos provocar una denegación de servicio mediante vectores no especificados. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01087206 •