This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Hp First view 2001-01-09
Product Hp-Ux Last view 2012-03-28
Version 11.11 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:hp:hp-ux

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
5.8 2012-03-28 CVE-2012-0126

Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 and 11.23 allows remote attackers to obtain access to diagnostic information via unknown vectors, a related issue to CVE-2012-0125.

10 2008-08-13 CVE-2008-1668

ftpd.c in (1) wu-ftpd 2.4.2 and (2) ftpd in HP HP-UX B.11.11 assigns uid 0 to the FTP client in certain operating-system misconfigurations in which PAM authentication can succeed even though no passwd entry is available for a user, which allows remote attackers to gain privileges, as demonstrated by a login attempt for an LDAP account when nsswitch.conf does not specify LDAP for passwd information.

6.3 2008-05-21 CVE-2008-1660

Unspecified vulnerability in useradd on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unspecified vectors.

6.8 2008-05-13 CVE-2008-0713

Unspecified vulnerability in the FTP server for HP-UX B.11.11, B.11.23, and B.11.31 allows remote authenticated users to cause a denial of service (FTP server outage) via unknown attack vectors.

7.8 2007-12-24 CVE-2007-6419

Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

10 2007-12-14 CVE-2007-6195

Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request.

4.9 2007-10-17 CVE-2007-5536

Unspecified vulnerability in OpenSSL before A.00.09.07l on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to cause a denial of service via unspecified vectors.

4.3 2007-10-09 CVE-2007-5302

Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

9 2007-09-20 CVE-2007-5008

The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not correctly report password status, which allows remote attackers to obtain privileges when certain "password issues" are not detected.

3.3 2007-08-28 CVE-2007-4590

The get_system_info command in Ignite-UX C.7.0 through C.7.3, and DynRootDisk (DRD) A.1.0.16.417 through A.2.0.0.592, on HP-UX B.11.11, B.11.23, and B.11.31 does not inform local users of networking changes made by the command, which has unknown impact and attack vectors.

7.1 2007-08-01 CVE-2007-4125

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause an unspecified denial of service via unknown vectors.

4.9 2007-02-13 CVE-2007-0916

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

10 2007-02-13 CVE-2007-0915

Distributed SLS daemon (SLSd) on HP-UX B.11.11 allows remote attackers to overwrite arbitrary files and gain privileges via a crafted RPC request.

4.6 2007-01-19 CVE-2007-0394

HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.

10 2006-10-27 CVE-2006-5558

Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.

4.6 2006-10-27 CVE-2006-5557

Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.

4.6 2006-10-27 CVE-2006-5556

Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long TZ environment variable.

4.6 2006-10-23 CVE-2006-5452

Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.

10 2006-10-05 CVE-2006-5151

Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to "gain root access" via unspecified vectors.

7.2 2006-09-29 CVE-2006-5091

Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gain privileges or obtain "unauthorized access" via unspecified vectors.

2.1 2006-09-15 CVE-2006-4820

Unspecified vulnerability in X.25 on HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

4.6 2006-09-14 CVE-2006-4795

Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors.

5 2006-08-16 CVE-2006-4188

Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

2.1 2006-08-16 CVE-2006-4187

Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors.

7.2 2006-07-02 CVE-2006-3335

Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.

CWE : Common Weakness Enumeration

%idName
45% (5) CWE-264 Permissions, Privileges, and Access Controls
36% (4) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
9% (1) CWE-287 Improper Authentication
9% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-8 Buffer Overflow in an API Call
CAPEC-9 Buffer Overflow in Local Command-Line Utilities
CAPEC-10 Buffer Overflow via Environment Variables
CAPEC-14 Client-side Injection-induced Buffer Overflow
CAPEC-24 Filter Failure through Buffer Overflow
CAPEC-42 MIME Conversion
CAPEC-44 Overflow Binary Resource File
CAPEC-45 Buffer Overflow via Symbolic Links
CAPEC-46 Overflow Variables and Tags
CAPEC-47 Buffer Overflow via Parameter Expansion
CAPEC-67 String Format Overflow in syslog()
CAPEC-92 Forced Integer Overflow
CAPEC-100 Overflow Buffers
CAPEC-123 Buffer Attacks

SAINT Exploits

Description Link
Samba call_trans2open buffer overflow More info here
System V login argument array buffer overflow More info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
61012 HP JetDirect Print Server ISAKMP Protocol Unspecified Malformed Input Remote ...
61011 HP-UX IPSec ISAKMP Protocol Unspecified Malformed Input Remote DoS (PROTOS)
60454 dtterm Window Title Escape Sequence Arbitrary Command Execution
60337 HP-UX sort File Handling Unspecified Issue
60336 HP-UX rs.F300 PATH Environment Variable Subversion Local Privilege Escalation
60333 HP-UX wall File Argument Handling Local Overflow
60142 HP-UX xntpd Unspecified Remote DoS
60058 HP Advanced Server/9000 Malformed UDP Packet Remote DoS
59511 HP-UX CIFS/9000 Server (SAMBA) Unspecified Resource Modification Arbitrary Fi...
48358 WU-FTPD PAM Authentication Configuration Weakness Authentication Bypass
45362 HP-UX useradd Unspecified File / Directory Security Bypass
45049 HP-UX ftp Server Unspecified Remote DoS
42234 HP-UX rpc.yppasswdd Unspecified Remote DoS
42233 HP-UX Software Distributor (SD) swagentd sw_rpc_agent_init Function Crafted D...
37894 OpenSSL on HP-UX Unspecified Local DoS
37603 HP System Management Homepage (SMH) Unspecified XSS
37564 HP-UX logins Unspecified Remote Privilege Escalation
37563 HP-UX Ignite-UX / DRD get_system_info Command Configuration Change Unspecifie...
37561 HP-UX ARPA Transport Unspecified Remote DoS
37559 HP-UX LDAP-UX Integration pam_authz Unspecified Remote Command Execution
34271 HP-UX swask -s Argument Local Format String
34027 HP-UX libc localtime_r Function TZ Variable Local Overflow
33994 HP-UX swpackage -S Argument Local Overflow
33993 HP-UX swmodify -S Argument Local Overflow
33549 HP-UX SetUID File Descriptor Status Verification Failure

ExploitDB Exploits

id Description
21180 Solaris/SPARC 2.5.1/2.6/7/8 Derived 'login' Buffer Overflow Vulnerability
716 Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2011-09-27 Name : CDE ToolTalk RPC Database Server Multiple Vulnerabilities
File : nvt/secpod_tooltalk_rpc_database_server_mult_vuln.nasl
2009-11-17 Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-10 Name : SLES9: Security update for apache
File : nvt/sles9p5014050.nasl
2009-10-10 Name : SLES9: Security update for Apache 2
File : nvt/sles9p5009547.nasl
2009-10-10 Name : SLES9: Security update for Java2
File : nvt/sles9p5013049.nasl
2009-10-10 Name : SLES9: Security update for webdav apache module
File : nvt/sles9p5013988.nasl
2009-06-03 Name : Solaris Update for csh/pfcsh 110898-15
File : nvt/gb_solaris_110898_15.nasl
2009-05-05 Name : HP-UX Update for ftp HPSBUX02334
File : nvt/gb_hp_ux_HPSBUX02334.nasl
2009-05-05 Name : HP-UX Update for rlpdaemon HPSBUX00163
File : nvt/gb_hp_ux_HPSBUX00163.nasl
2009-05-05 Name : HP-UX Update for sendmail HPSBUX00246
File : nvt/gb_hp_ux_HPSBUX00246.nasl
2009-05-05 Name : HP-UX Update for Shells HPSBUX00275
File : nvt/gb_hp_ux_HPSBUX00275.nasl
2009-05-05 Name : HP-UX Update for sendmail HPSBUX00281
File : nvt/gb_hp_ux_HPSBUX00281.nasl
2009-05-05 Name : HP-UX Update for dtterm HPSBUX00309
File : nvt/gb_hp_ux_HPSBUX00309.nasl
2009-05-05 Name : HP-UX Update for AAA Server HPSBUX01011
File : nvt/gb_hp_ux_HPSBUX01011.nasl
2009-05-05 Name : HP-UX Update for Apache HPSBUX01019
File : nvt/gb_hp_ux_HPSBUX01019.nasl
2009-05-05 Name : HP-UX Update for Apache with PHP HPSBUX01090
File : nvt/gb_hp_ux_HPSBUX01090.nasl
2009-05-05 Name : HP-UX Update for Java Plug-In (JPI) HPSBUX01100
File : nvt/gb_hp_ux_HPSBUX01100.nasl
2009-05-05 Name : HP-UX Update for rpc.yppasswdd HPSBUX02295
File : nvt/gb_hp_ux_HPSBUX02295.nasl
2009-05-05 Name : HP-UX Update for useradd(1M) HPSBUX02335
File : nvt/gb_hp_ux_HPSBUX02335.nasl
2009-05-05 Name : HP-UX Update for ftpd HPSBUX02356
File : nvt/gb_hp_ux_HPSBUX02356.nasl
2009-05-05 Name : HP-UX Update for TCP/IP (IPv4) HPSBUX01137
File : nvt/gb_hp_ux_HPSBUX01137.nasl
2009-05-05 Name : HP-UX Update for Java Web Start HPSBUX01214
File : nvt/gb_hp_ux_HPSBUX01214.nasl
2009-05-05 Name : HP-UX Update for ARPA Transport HPSBUX02192
File : nvt/gb_hp_ux_HPSBUX02192.nasl
2009-05-05 Name : HP-UX Update for the Ignite-UX or the DynRootDisk (DRD) get_system_info Comm...
File : nvt/gb_hp_ux_HPSBUX02249.nasl
2009-05-05 Name : HP-UX Update for OpenSSL HPSBUX02277
File : nvt/gb_hp_ux_HPSBUX02277.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2008-T-0045 HP-UX Running ftpd Remote Privileged Access Vulnerability
Severity: Category I - VMSKEY: V0017142

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2014-01-10 HP-UX lpd command execution attempt
RuleID : 9790 - Type : SERVER-OTHER - Revision : 8
2014-01-10 RCPT TO overflow
RuleID : 654-community - Type : SERVER-MAIL - Revision : 28
2014-01-10 RCPT TO overflow
RuleID : 654 - Type : SERVER-MAIL - Revision : 28
2015-07-28 Apache mod_include buffer overflow attempt
RuleID : 34973 - Type : SERVER-OTHER - Revision : 2
2014-01-10 login buffer non-evasive overflow attempt
RuleID : 3274-community - Type : PROTOCOL-TELNET - Revision : 14
2014-01-10 login buffer non-evasive overflow attempt
RuleID : 3274 - Type : PROTOCOL-TELNET - Revision : 14
2014-01-10 login buffer overflow attempt
RuleID : 3147-community - Type : PROTOCOL-TELNET - Revision : 15
2014-01-10 login buffer overflow attempt
RuleID : 3147 - Type : PROTOCOL-TELNET - Revision : 15
2014-01-10 SSLv2 Client_Hello Challenge Length overflow attempt
RuleID : 2656-community - Type : SERVER-WEBAPP - Revision : 22
2014-01-10 SSLv2 Client_Hello Challenge Length overflow attempt
RuleID : 2656 - Type : SERVER-WEBAPP - Revision : 22
2014-01-10 Sendmail RCPT TO prescan too long addresses overflow
RuleID : 2270-community - Type : SERVER-MAIL - Revision : 18
2014-01-10 Sendmail RCPT TO prescan too long addresses overflow
RuleID : 2270 - Type : SERVER-MAIL - Revision : 18
2014-01-10 Sendmail RCPT TO prescan too many addresses overflow
RuleID : 2269-community - Type : SERVER-MAIL - Revision : 15
2014-01-10 Sendmail RCPT TO prescan too many addresses overflow
RuleID : 2269 - Type : SERVER-MAIL - Revision : 15
2014-01-10 Sendmail MAIL FROM prescan too long addresses overflow
RuleID : 2268-community - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail MAIL FROM prescan too long addresses overflow
RuleID : 2268 - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail MAIL FROM prescan too many addresses overflow
RuleID : 2267-community - Type : SERVER-MAIL - Revision : 15
2014-01-10 Sendmail MAIL FROM prescan too many addresses overflow
RuleID : 2267 - Type : SERVER-MAIL - Revision : 15
2014-01-10 Sendmail SOML FROM prescan too long addresses overflow
RuleID : 2266-community - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail SOML FROM prescan too long addresses overflow
RuleID : 2266 - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail SOML FROM prescan too many addresses overflow
RuleID : 2265-community - Type : SERVER-MAIL - Revision : 14
2014-01-10 Sendmail SOML FROM prescan too many addresses overflow
RuleID : 2265 - Type : SERVER-MAIL - Revision : 14
2014-01-10 Sendmail SAML FROM prescan too long addresses overflow
RuleID : 2264-community - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail SAML FROM prescan too long addresses overflow
RuleID : 2264 - Type : SERVER-MAIL - Revision : 16
2014-01-10 Sendmail SAML FROM prescan too many addresses overflow
RuleID : 2263-community - Type : SERVER-MAIL - Revision : 16

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2013-02-22 Name: The remote Unix host has an application that is affected by a security bypass...
File: java_jre_multiple_applet_vulnerability_unix.nasl - Type: ACT_GATHER_INFO
2012-09-06 Name: The remote Mandrake Linux host is missing a security update.
File: mandrake_MDKSA-2000-075.nasl - Type: ACT_GATHER_INFO
2012-01-04 Name: The remote server is vulnerable to a denial of service attack.
File: openssl_0_9_6m_0_9_7d.nasl - Type: ACT_GATHER_INFO
2012-01-04 Name: The remote server is affected by a denial of service vulnerability.
File: openssl_vA_0_9_7l_hpux.nasl - Type: ACT_GATHER_INFO
2009-09-24 Name: The remote SuSE 9 host is missing a security-related patch.
File: suse9_9363.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_013fa252072411d9b45d000c41e2cdad.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_207f8ff3f69711d881b0000347a4fa7d.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_68233cba777411d889ed0020ed76ef5a.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_6e6a6b8a2fde11d9b3a20050fc56d258.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_ac619d063ef811d98741c942c075aa41.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_f04cc5cb2d0b11d8beaf000a95c4d922.nasl - Type: ACT_GATHER_INFO
2008-08-19 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_38458.nasl - Type: ACT_GATHER_INFO
2008-08-15 Name: The remote ftp server may allow remote privileged access.
File: hpux_ftpd_priv_escalation.nasl - Type: ACT_GATHER_INFO
2008-05-28 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHCO_36953.nasl - Type: ACT_GATHER_INFO
2008-05-28 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHCO_37290.nasl - Type: ACT_GATHER_INFO
2008-05-28 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHCO_37291.nasl - Type: ACT_GATHER_INFO
2008-05-20 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_36192.nasl - Type: ACT_GATHER_INFO
2008-05-20 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_36193.nasl - Type: ACT_GATHER_INFO
2007-12-26 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_36260.nasl - Type: ACT_GATHER_INFO
2007-12-26 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_36449.nasl - Type: ACT_GATHER_INFO
2007-11-20 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHCO_32549.nasl - Type: ACT_GATHER_INFO
2007-10-16 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHSS_36869.nasl - Type: ACT_GATHER_INFO
2007-10-16 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHSS_36870.nasl - Type: ACT_GATHER_INFO
2007-10-16 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHSS_36871.nasl - Type: ACT_GATHER_INFO
2007-10-03 Name: The remote HP-UX host is missing a security-related patch.
File: hpux_PHNE_36168.nasl - Type: ACT_GATHER_INFO