HP : Security Vulnerabilities, CVEs, Published In 1999 CVSS score >= 6

HP-UX aserver program allows local users to gain privileges via a symlink attack.

Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.

VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which makes it easier for attackers to conduct brute force password guessing.

Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges.

Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor (SSP) Teststation.

The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization.

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).

HP CDE program includes the current directory in root's PATH variable.

MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.

rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.