CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 1CVE-2016-9795 – CA Common Services casrvc Privilege Escalation
https://notcve.org/view.php?id=CVE-2016-9795
27 Jan 2017 — The casrvc program in CA Common Services, as used in CA Client Automation 12.8, 12.9, and 14.0; CA SystemEDGE 5.8.2 and 5.9; CA Systems Performance for Infrastructure Managers 12.8 and 12.9; CA Universal Job Management Agent 11.2; CA Virtual Assurance for Infrastructure Managers 12.8 and 12.9; CA Workload Automation AE 11, 11.3, 11.3.5, and 11.3.6 on AIX, HP-UX, Linux, and Solaris allows local users to modify arbitrary files and consequently gain root privileges via vectors related to insufficient validatio... • https://github.com/blogresponder/CA-Common-Services-privilege-escalation-cve-2016-9795-revisited • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2011-4160
https://notcve.org/view.php?id=CVE-2011-4160
24 Nov 2011 — Unspecified vulnerability in HP Operations Agent 11.00 and Performance Agent 4.73 and 5.0 on AIX, HP-UX, Linux, and Solaris allows local users to bypass intended directory-access restrictions via unknown vectors. Vulnerabilidad no especificada en HP Operations Agent v11.00 y Performance Agent v4.73 y v5.0 en AIX, HP-UX, Linux, y Solaris, permite a usuarios locales evitar las restricciones de acceso del directorio a través de vectores desconocidos • http://marc.info/?l=bugtraq&m=132198248000785&w=2 •
CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 2CVE-2011-2608
https://notcve.org/view.php?id=CVE-2011-2608
01 Jul 2011 — ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command. ovbbccb.exe versión 6.20.50.0 y otras versiones en OpenView Performance Agent versiones 4.70 y 5.0; y el Operations Agent versiones 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501 y 8.53, de HP; permite a los atacantes ... • http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 6%CPEs: 7EXPL: 1CVE-2008-4420
https://notcve.org/view.php?id=CVE-2008-4420
13 Apr 2009 — Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985. Múltiples desbordamientos de búfer basados en pi... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 0CVE-2007-4349
https://notcve.org/view.php?id=CVE-2007-4349
23 Oct 2008 — The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference. El servicio Shared Trace (también se conoce como OVTrace) en HP Performance Agent versión C.04.70 (4.70)... • http://marc.info/?l=bugtraq&m=122876677518654&w=2 •
CVSS: 10.0EPSS: 63%CPEs: 5EXPL: 0CVE-2007-0446 – Hewlett-Packard Mercury LoadRunner Agent Stack Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-0446
08 Feb 2007 — Stack-based buffer overflow in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent 8.0 and 8.1, Performance Center Agent 8.0 and 8.1, and Monitor over Firewall 8.1 allows remote attackers to execute arbitrary code via a packet with a long server_ip_name field to TCP port 54345, which triggers the overflow in mchan.dll. Desbordamiento de búfer basado en pila en magentproc.exe para Hewlett-Packard Mercury LoadRunner Agent 8.0 y 8.1, Performance Center Agent 8.0 y 8.1, y Monitor sobre el Firewall 8.1 p... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00854250 •