Page 23 of 218 results (0.006 seconds)

CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 0

rpcbind in HP-UX 11.00, 11.04 and 11.11 allows remote attackers to cause a denial of service (core dump) via a malformed RPC portmap requests, possibly related to a buffer overflow. • http://www.ciac.org/ciac/bulletins/m-003.shtml http://www.securityfocus.com/advisories/3586 http://www.securityfocus.com/bid/3400 https://exchange.xforce.ibmcloud.com/vulnerabilities/7221 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5683 •

CVSS: 7.5EPSS: 3%CPEs: 5EXPL: 0

Buffer overflow in line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote attackers to execute arbitrary commands. • http://archives.neohapsis.com/archives/hp/2001-q3/0047.html http://www.cert.org/advisories/CA-2001-30.html http://www.ciac.org/ciac/bulletins/l-134.shtml http://www.kb.cert.org/vuls/id/966075 http://www.securityfocus.com/bid/3240 http://xforce.iss.net/alerts/advise93.php https://exchange.xforce.ibmcloud.com/vulnerabilities/6811 •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 4

Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument. • https://www.exploit-db.com/exploits/482 https://www.exploit-db.com/exploits/21098 http://www.securityfocus.com/archive/1/211687 http://www.securityfocus.com/bid/3279 https://exchange.xforce.ibmcloud.com/vulnerabilities/7078 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the lastb program. • http://archives.neohapsis.com/archives/hp/2001-q3/0052.html http://www.iss.net/security_center/static/8632.php http://www.securityfocus.com/bid/3289 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083. • http://archives.neohapsis.com/archives/hp/2001-q1/0080.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5621 •