Page 6 of 87 results (0.056 seconds)

CVSS: 9.3EPSS: 13%CPEs: 3EXPL: 0

The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476. La implementación IPv6 Neighbor Discovery Protocol (NDP) en HP HP-UX B.11.11, B.11.23 y B.11.31, no valida el origen de los mensajes Neighbor Discovery -Descubrimiento de Vecinos-, esto permite a atacantes remotos provocar una denegación de servicio (pérdida de conectividad), leer el tráfico privado de redes y puede que ejecutar código de su elección a través de un mensaje falso que modifica el FIB (Forward Information Base). Está relacionado con la vulnerabilidad CVE-2008-2476. • http://marc.info/?l=bugtraq&m=123368621330334&w=2 http://secunia.com/advisories/33787 http://www.securitytracker.com/id?1021660 http://www.vupen.com/english/advisories/2009/0312 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5943 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 3%CPEs: 3EXPL: 0

Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown vectors. Vulnerabilidad inespecífica en DCE en HP HP-UX B.11.11, B.11.23, y B.11.31 permite a atacantes remotos provocar una denegación de servicio a través de vectores no conocidos. • http://marc.info/?l=bugtraq&m=122893704624601&w=2 http://osvdb.org/50679 http://securityreason.com/securityalert/4705 http://securitytracker.com/id?1021377 http://www.securityfocus.com/bid/32754 http://www.vupen.com/english/advisories/2008/3411 •

CVSS: 6.2EPSS: 0%CPEs: 70EXPL: 0

Unspecified vulnerability in HP System Management Homepage (SMH) 2.2.6 and earlier on HP-UX B.11.11 and B.11.23, and SMH 2.2.6 and 2.2.8 and earlier on HP-UX B.11.23 and B.11.31, allows local users to gain "unauthorized access" via unknown vectors, possibly related to temporary file permissions. Vulnerabilidad no especificada en HP System Management Homepage (SMH) v2.2.6 y anteriores en HP-UX B.11.11 y B.11.23, y SMH 2.2.6 y 2.2.8 y anteriores en HP-UX B.11.23 y B.11.31; permite a usuarios locales obtener "acceso no autorizado" a través de vectores desconocidos. Puede que esté relacionado con los permisos de los ficheros temporales. • http://marc.info/?l=bugtraq&m=122581539223159&w=2 http://osvdb.org/49521 http://secunia.com/advisories/32544 http://securityreason.com/securityalert/4545 http://www.securitytracker.com/id?1021133 http://www.vupen.com/english/advisories/2008/2999 https://exchange.xforce.ibmcloud.com/vulnerabilities/46313 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.8EPSS: 4%CPEs: 2EXPL: 0

Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a denial of service via unknown vectors. Vulnerabilidad no especificada en libc de HP HP-UX B.11.23 y B.11.31 permite a atacantes remotos provocar una denegación de servicio a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=121805712507842&w=2 http://secunia.com/advisories/31400 http://securitytracker.com/id?1020637 http://www.securityfocus.com/bid/30581 http://www.vupen.com/english/advisories/2008/2314 https://exchange.xforce.ibmcloud.com/vulnerabilities/44247 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5855 •

CVSS: 10.0EPSS: 2%CPEs: 3EXPL: 0

Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might allow remote attackers to read or modify arbitrary files, related to an "empty systems list." Vulnerabilidad no especificada en HP System Administration Manager (SAM) sobre HP-UX B.11.11 y B.11.23, cuando se usa para configurar NFS. Puede permitir a atacantes remotos leer o modificar archivos de su elección, relacionados con una "lista de sistemas vacía." • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01367453 http://secunia.com/advisories/31309 http://securitytracker.com/id?1020580 http://www.securityfocus.com/bid/30449 http://www.vupen.com/english/advisories/2008/2258 https://exchange.xforce.ibmcloud.com/vulnerabilities/44119 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5814 • CWE-16: Configuration •