CVSS: 4.0EPSS: 0%CPEs: 2EXPL: 0CVE-2010-0451
https://notcve.org/view.php?id=CVE-2010-0451
The installation process for NFS/ONCplus B.11.31_08 and earlier on HP HP-UX B.11.31 changes the NFS_SERVER setting in the nfsconf file, which might allow remote attackers to obtain filesystem access via NFS requests. El proceso de instalación de NFS/ONCplus B.11.31_08 y versiones anteriores en HP HP-UX B.11.31 modifica la variable NFS_SERVER en el fichero nfsconf , lo que puede permitir a atacantes remotos la obtención de acceso al sistema de ficheros a través de peticiones NFS. • http://marc.info/?l=bugtraq&m=126962272413767&w=2 http://osvdb.org/63243 http://secunia.com/advisories/39111 http://securitytracker.com/id?1023758 http://www.securityfocus.com/bid/38982 http://www.vupen.com/english/advisories/2010/0731 https://exchange.xforce.ibmcloud.com/vulnerabilities/57216 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12025 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.3EPSS: 1%CPEs: 3EXPL: 0CVE-2010-0452
https://notcve.org/view.php?id=CVE-2010-0452
Multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC, formerly Mercury IT Governance) 7.1 through SP10 and 7.5 through SP3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en HP Project y Portfolio Management Center (PPMC, anteriormente Mercury IT Governance) v7.1 hasta el SP10 y 7.5 hasta el SP3 permiten a atacantes remotos inyectar codigo de script web o código HTML de su elección a través de vectores de ataque sin especificar. • http://marc.info/?l=bugtraq&m=126953216625011&w=2 http://secunia.com/advisories/39105 http://securitytracker.com/id?1023749 http://www.osvdb.org/63175 http://www.securityfocus.com/bid/38961 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0CVE-2009-4184
https://notcve.org/view.php?id=CVE-2009-4184
Unspecified vulnerability in HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 on HP-UX B.11.23 (11i v2) and HP-UX B.11.31 (11i v3) allows local users to gain access to an Oracle or Sybase database via unknown vectors. Vulnerabilidad inespecífica en HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 en HP-UX B.11.23 (11i v2) y HP-UX B.11.31 (11i v3) permite a usuarios locales conseguir el acceso a las bases de datos Oracle o Sybase a través de vectores desconocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01894850 http://secunia.com/advisories/38423 http://www.securityfocus.com/bid/38035 http://www.securitytracker.com/id?1023523 http://www.vupen.com/english/advisories/2010/0272 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12172 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8305 •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2009-2682
https://notcve.org/view.php?id=CVE-2009-2682
Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors. Vulnerabilidad no especificada en control de acceso basado en rol (RBAC) en HP HP-UX vB.11.23 y vB.11.31 permite a los usuarios locales intenta evitar restricciones de acceso a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=125364434020838&w=2 http://secunia.com/advisories/36850 http://www.securityfocus.com/bid/36476 https://exchange.xforce.ibmcloud.com/vulnerabilities/53411 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6328 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 3%CPEs: 3EXPL: 0CVE-2009-2679
https://notcve.org/view.php?id=CVE-2009-2679
Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors. Vulnerabilidad no esperada en bootpd en HP HP-UX vB.11.11, vB.11.23, y vB.11.31 permite a atacantes remotos causar una denegación de servicio a través de vectores no conocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01866324 http://secunia.com/advisories/36663 http://www.securityfocus.com/bid/36395 http://www.vupen.com/english/advisories/2009/2664 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5780 •