43 results (0.011 seconds)

CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0

Unspecified vulnerability in the BIOS F.26 and earlier for the HP Compaq Notebook PC allows physically proximate attackers to obtain privileged access via unspecified vectors, possibly involving an authentication bypass of the power-on password. Vulnerabilidad sin especificar en la BIOS F.26 y anteriores para HP Compaq Notebook PC permite a atacantes próximos físicamente obtener acceso privilegiado a través de vectores no especificados, posiblemente implicando una evitación de autentificación de la contraseña de encendido. • http://marc.info/?l=bugtraq&m=120672270224094&w=2 http://securitytracker.com/id?1019730 http://www.securityfocus.com/bid/28495 http://www.vupen.com/english/advisories/2008/1043/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41521 • CWE-287: Improper Authentication •

CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 0

Unspecified vulnerability in the BIOS F.04 through F.11 for the HP Compaq Business Notebook PC allows local users to cause a denial of service via unspecified vectors. Vulnerabilidad sin especificar en la BIOS de F.04 a F.11 para HP Compaq Business Notebook PC permite a usuarios locales provocar una denegación de servicio a través de vectores no especificados. • http://marc.info/?l=bugtraq&m=120672155821700&w=2 http://securitytracker.com/id?1019729 http://www.securityfocus.com/bid/28494 http://www.vupen.com/english/advisories/2008/1042/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41520 •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error page. • http://marc.info/?l=bugtraq&m=112680922318639&w=2 •

CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0

The Software Development Kit (SDK) and Run Time Environment (RTE) 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service (Java Virtual Machine hang) via object deserialization. • http://marc.info/?l=bugtraq&m=110719624029320&w=2 •

CVSS: 4.3EPSS: 2%CPEs: 58EXPL: 0

ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. ISC BIND 8.3.x antes de 8.3.7, y 8.4.x antes de 8.4.3 permite a atacantes remotos envenenar la cache mediante un servidor de nombres malicioso que devuelve respuestas negativas con un valor TTL (time to live) largo. • ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-003.0/CSSA-2004-003.0.txt ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.33/CSSA-2003-SCO.33.txt http://secunia.com/advisories/10542 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57434 http://www.debian.org/security/2004/dsa-409 http://www.kb.cert.org/vuls/id/734644 http://www.trustix.org/errata/misc/2003/TSL-2003-0044-bind.asc.txt https://oval.cisecurity.org/repository& •