Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.
Max CVSS
7.8
EPSS Score
1.11%
Published
2006-12-26
Updated
2018-10-17
Unspecified vulnerability in SSH key based authentication in HP Integrated Lights Out (iLO) 1.70 through 1.87, and iLO 2 1.00 through 1.11, on Proliant servers, allows remote attackers to "gain unauthorized access."
Max CVSS
7.5
EPSS Score
2.10%
Published
2006-12-18
Updated
2017-07-29
Buffer overflow in the POSIX Threads library (libpthread) on HP Tru64 UNIX 4.0F PK8, 4.0G PK4, and 5.1A PK6 allows local users to gain root privileges via a long PTHREAD_CONFIG environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-12-10
Updated
2017-07-29
radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before executing commands in the installation directory, which allows remote attackers to cause a denial of service (reboot) by calling radbootw.exe or create arbitrary files by calling radcrecv.
Max CVSS
7.8
EPSS Score
5.51%
Published
2006-11-09
Updated
2018-10-17
HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not properly evaluate access permissions to OSS directories when no optional ACL entry exists, which allows local users to read arbitrary files.
Max CVSS
6.2
EPSS Score
0.04%
Published
2006-11-04
Updated
2017-07-20
Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.
Max CVSS
10.0
EPSS Score
0.24%
Published
2006-10-27
Updated
2017-10-19
Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-10-27
Updated
2017-10-19
Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long TZ environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-10-27
Updated
2017-10-19
Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.
Max CVSS
4.6
EPSS Score
0.06%
Published
2006-10-23
Updated
2018-10-17
Unspecified vulnerability in HP Version Control Agent before 2.1.5 allows remote authenticated users to obtain "unauthorized access" to a remote Repository Manager account and potentially gain privileges via unspecified vectors.
Max CVSS
6.5
EPSS Score
0.54%
Published
2006-10-17
Updated
2018-10-17
Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to "gain root access" via unspecified vectors.
Max CVSS
10.0
EPSS Score
2.34%
Published
2006-10-05
Updated
2018-10-17
Mercury SiteScope 8.2 (8.1.2.0) allows remote authenticated users to cause a denial of service (loss of connectivity to the classic interface) via attempted HTML injection into the "new monitor description" field.
Max CVSS
4.0
EPSS Score
0.36%
Published
2006-10-03
Updated
2018-10-17
Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote authenticated users to inject arbitrary web script or HTML via (1) "any field create name field" except "create new group name" or (2) any description field.
Max CVSS
4.9
EPSS Score
0.25%
Published
2006-10-03
Updated
2018-10-17
Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gain privileges or obtain "unauthorized access" via unspecified vectors.
Max CVSS
7.2
EPSS Score
0.06%
Published
2006-09-29
Updated
2018-10-17
Unspecified vulnerability in X.25 on HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.
Max CVSS
2.1
EPSS Score
0.06%
Published
2006-09-15
Updated
2018-10-17
Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors.
Max CVSS
4.6
EPSS Score
0.06%
Published
2006-09-14
Updated
2018-10-17
Unspecified vulnerability in the backup agent and Cell Manager in HP OpenView Storage Data Protector 5.1 and 5.5 before 20060810 allows remote attackers to execute arbitrary code on an agent via unspecified vectors related to authentication and input validation.
Max CVSS
7.5
EPSS Score
27.64%
Published
2006-08-17
Updated
2017-07-20
Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.
Max CVSS
5.0
EPSS Score
4.49%
Published
2006-08-17
Updated
2017-10-11
Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors.
Max CVSS
2.1
EPSS Score
0.06%
Published
2006-08-17
Updated
2018-10-17
Hewlett-Packard (HP) ProCurve 3500yl, 6200yl, and 5400zl switches with software before K.11.33 allow remote attackers to cause a denial of service (possibly memory leak or system crash) via unknown vectors.
Max CVSS
5.0
EPSS Score
3.04%
Published
2006-08-07
Updated
2018-10-17
Unspecified vulnerability in [SYSEXE]SMPUTIL.EXE in HP OpenVMS 7.3-2 allows local users and "remote users" to cause a denial of service (crash).
Max CVSS
5.0
EPSS Score
0.63%
Published
2006-07-21
Updated
2011-03-08
Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.
Max CVSS
7.2
EPSS Score
0.06%
Published
2006-07-03
Updated
2018-10-18
Unspecified vulnerability in the kernel in HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.
Max CVSS
4.9
EPSS Score
0.06%
Published
2006-06-23
Updated
2018-10-18
Unspecified vulnerability in Support Tools Manager (xstm, cstm, and stm) on HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.
Max CVSS
4.9
EPSS Score
0.09%
Published
2006-06-20
Updated
2018-10-18
Multiple unspecified vulnerabilities in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, and 7.50 allow remote attackers to gain privileged access, execute arbitrary commands, or create arbitrary files via unknown vectors.
Max CVSS
7.5
EPSS Score
1.92%
Published
2006-05-24
Updated
2018-10-18
39 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!