CVE-2008-0707
https://notcve.org/view.php?id=CVE-2008-0707
HP StorageWorks Library and Tape Tools (LTT) before 4.5 SR1 on HP-UX B.11.11 and B.11.23 allows local users to gain privileges via unspecified vectors. Versiones anteriores a 4.5 SR1 de HP StorageWorks Library y Tape Tools (LTT) en HP-UX B.11.11 y B.11.23 permite a usuarios locales conseguir privilegios utilizando vectores no especificados. • http://secunia.com/advisories/29442 http://securitytracker.com/id?1019651 http://www.securityfocus.com/bid/28314 http://www.vupen.com/english/advisories/2008/0926/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41337 https://www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01399648 • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2008-0212
https://notcve.org/view.php?id=CVE-2008-0212
ovtopmd in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allows remote attackers to cause a denial of service (crash) via a crafted TCP request that triggers an out-of-bounds memory access. ovtopmd en HP OpenView Network Node Manager (OV NNM) versiones 6.41, 7.01 y 7.51, permite a los atacantes remotos causar una denegación de servicio (bloqueo) por medio de una petición TCP diseñada que desencadena un acceso de memoria fuera de límites. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=652 http://secunia.com/advisories/28798 http://www.securityfocus.com/archive/1/487586/100/0/threaded http://www.securityfocus.com/bid/27629 http://www.securitytracker.com/id?1019306 http://www.vupen.com/english/advisories/2008/0424 • CWE-399: Resource Management Errors •
CVE-2007-6425
https://notcve.org/view.php?id=CVE-2007-6425
Unspecified vulnerability in HP-UX B.11.31, when running ARPA Transport, allows remote attackers to cause a denial of service via unknown vectors. Vulnerabilidad no especificada en HP-UX B.11.31, cuando ejecuta ARPA Transport, permite a atacantes remotos provocar una denegación de servicio a través de vectores no especificados. • http://secunia.com/advisories/28612 http://www.securityfocus.com/archive/1/486852/100/0/threaded http://www.securitytracker.com/id?1019260 http://www.vupen.com/english/advisories/2008/0262 https://exchange.xforce.ibmcloud.com/vulnerabilities/39858 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5436 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-6419
https://notcve.org/view.php?id=CVE-2007-6419
Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. Vulnerabilidad no especificada en rpc.yppasswdd en HP HP-UX B.11.11, B.11.23, y B.11.31 permite a atacantes remotos provocar denegación de servicio (caida de demonio) a través de vectores no especificados. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01294324 http://secunia.com/advisories/28191 http://www.securityfocus.com/bid/26971 http://www.securitytracker.com/id?1019136 http://www.vupen.com/english/advisories/2007/4294 https://exchange.xforce.ibmcloud.com/vulnerabilities/39173 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5734 •
CVE-2007-6195 – Hewlett-Packard HP-UX swagentd Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-6195
Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request. Un desbordamiento de búfer en la función sw_rpc_agent_init en swagentd en Software Distributor (SD) y posiblemente en otras aplicaciones DCE, en HP HP-UX versiones B.11.11 y B.11.23, permite a los atacantes remotos ejecutar código arbitrario o causar una denegación de servicio por medio de argumentos malformados en una petición DCE RPC opcode 0x04. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard HP-UX operating system. Authentication is not required to exploit this vulnerability. The specific flaw exists within the function sw_rpc_agent_init (opcode 0x04) defined in swagentd. Specific malformed arguments can cause function pointers to be overwritten and thereby result in arbitrary code execution. • http://secunia.com/advisories/28087 http://www.securityfocus.com/archive/1/485260/100/0/threaded http://www.securityfocus.com/bid/26855 http://www.securitytracker.com/id?1019098 http://www.vupen.com/english/advisories/2007/4220 http://www.zerodayinitiative.com/advisories/ZDI-07-079.html http://www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01294212-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/39018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •