CVSS: 10.0EPSS: 20%CPEs: 3EXPL: 2CVE-2005-3296
https://notcve.org/view.php?id=CVE-2005-3296
23 Oct 2005 — The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in. • http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00126.html •
CVSS: 10.0EPSS: 37%CPEs: 3EXPL: 2CVE-2005-3277 – HP-UX 11.11 - lpd Remote Command Execution
https://notcve.org/view.php?id=CVE-2005-3277
21 Oct 2005 — The LPD service in HP-UX 10.20 11.11 (11i) and earlier allows remote attackers to execute arbitrary code via shell metacharacters ("`" or single backquote) in a request that is not properly handled when an error occurs, as demonstrated by killing the connection, a different vulnerability than CVE-2002-1473. • https://www.exploit-db.com/exploits/1261 •
CVSS: 9.8EPSS: 11%CPEs: 15EXPL: 0CVE-2004-1332
https://notcve.org/view.php?id=CVE-2004-1332
31 Dec 2004 — Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request. • http://marc.info/?l=bugtraq&m=110797179710695&w=2 •
CVSS: 7.5EPSS: 2%CPEs: 252EXPL: 0CVE-2004-0081
https://notcve.org/view.php?id=CVE-2004-0081
18 Mar 2004 — OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. OpenSSL 0.9.6 anteriores a la 0.9.6d no manejan adecuadamente los tipos de mensajes desconocidos, lo que permite a atacantes remotos causar una denegación de servicios (por bucle infinito), como se demuestra utilizando la herramienta de testeo Codenomicon TLS. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.10/SCOSA-2004.10.txt •
CVSS: 7.5EPSS: 2%CPEs: 252EXPL: 0CVE-2004-0079 – Cisco Security Advisory 20040317-openssl
https://notcve.org/view.php?id=CVE-2004-0079
17 Mar 2004 — The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. La función do_change_cipher_spec en OpenSSL 0.9.6c hasta 0.9.6.k y 0.9.7a hasta 0.9.7c permite que atacantes remotos provoquen una denegación de servicio (caída) mediante una hábil unión SSL/TLS que provoca un puntero nulo. A Null-pointer assignment during an SSL handshake can result in a denial of... • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.asc • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 245EXPL: 0CVE-2004-0112 – Cisco Security Advisory 20040317-openssl
https://notcve.org/view.php?id=CVE-2004-0112
17 Mar 2004 — The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read. El código que une SSL/TLS en OpenSSL 0.9.7a, 0.9.7b y 0.9.7c, usando Kerberos, no comprueba adecuadamente la longitud de los tickets de Kerberos, lo que permite que atacantes remotos provoquen una dene... • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-005.txt.asc • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2003-1356
https://notcve.org/view.php?id=CVE-2003-1356
31 Dec 2003 — The "file handling" in sort in HP-UX 10.01 through 10.20, and 11.00 through 11.11 is "incorrect," which allows attackers to gain access or cause a denial of service via unknown vectors. • http://archives.neohapsis.com/archives/hp/2003-q1/0009.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2003-1360
https://notcve.org/view.php?id=CVE-2003-1360
31 Dec 2003 — Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable. • http://securityreason.com/securityalert/3236 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 3CVE-2003-1097 – HP-UX 10.x/11.x - RExec Remote 'Username' Flag Local Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-1097
31 Dec 2003 — Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. • https://www.exploit-db.com/exploits/22552 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2CVE-2003-1375 – HPUX 10.20/11 Wall Message - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-1375
31 Dec 2003 — Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an argument. • https://www.exploit-db.com/exploits/22231 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •