HP : Security Vulnerabilities, CVEs, Published In 2000 CVSS score >= 7
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-11
Updated
2017-07-11
Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-10-20
Updated
2008-09-05
The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-10-20
Updated
2017-10-10
Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command.
Max CVSS
10.0
EPSS Score
2.06%
Published
2000-10-20
Updated
2008-09-05
CVE-2000-0573
Public exploit
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
Max CVSS
10.0
EPSS Score
96.95%
Published
2000-07-07
Updated
2018-05-03
Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.
Max CVSS
10.0
EPSS Score
0.52%
Published
2000-06-06
Updated
2008-09-10
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
Max CVSS
10.0
EPSS Score
0.99%
Published
2000-06-07
Updated
2017-10-10
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Max CVSS
7.5
EPSS Score
7.84%
Published
2000-05-24
Updated
2008-09-10
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
Max CVSS
7.5
EPSS Score
1.71%
Published
2000-02-17
Updated
2008-09-10
The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-02
Updated
2018-05-03
The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-02
Updated
2018-05-03
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).
Max CVSS
10.0
EPSS Score
1.21%
Published
2000-01-18
Updated
2008-09-05
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-03-02
Updated
2018-05-03
Buffer overflow in HP-UX cstm program allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-12-20
Updated
2022-08-17
14 vulnerabilities found