Page 29 of 166 results (0.012 seconds)

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges. • http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000217160216.13708.qmail%40underground.org •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier. • http://www.securityfocus.com/bid/944 http://www.securityfocus.com/templates/advisory.html?id=2041 •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 1

Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges. • https://www.exploit-db.com/exploits/19501 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 http://www.securityfocus.com/bid/641 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4374 •

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 1

The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands. • https://www.exploit-db.com/exploits/20396 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5549 •

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0

The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command. • https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5728 •