Vulnerabilities > HP > HP UX > 11.11
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-02-14 | CVE-2007-0915 | Remote Arbitrary File Creation vulnerability in HP Hp-Ux 11.11 Distributed SLS daemon (SLSd) on HP-UX B.11.11 allows remote attackers to overwrite arbitrary files and gain privileges via a crafted RPC request. | 10.0 |
| 2007-01-19 | CVE-2007-0394 | Local Security vulnerability in HP Hp-Ux 11.11 HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572. | 4.6 |
| 2006-10-27 | CVE-2006-5558 | Local Format String vulnerability in HP-UX Software Distributor SWAsk Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. | 10.0 |
| 2006-10-27 | CVE-2006-5557 | Local Buffer Overflow vulnerability in HP Hp-Ux 11.00/11.11/11.4 Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. | 4.6 |
| 2006-10-27 | CVE-2006-5556 | Local Buffer Overflow vulnerability in HP Hp-Ux 11.00/11.11/11.4 Buffer overflow in the localtime_r function, and certain other functions, in libc in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long TZ environment variable. | 4.6 |
| 2006-10-23 | CVE-2006-5452 | Buffer Overflow vulnerability in HP Hp-Ux and Tru64 Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument. | 4.6 |
| 2006-10-05 | CVE-2006-5151 | Remote Unauthorized Access and Privilege Escalation vulnerability in HP Hp-Ux 11.00/11.11/11.23 Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to "gain root access" via unspecified vectors. | 10.0 |
| 2006-09-29 | CVE-2006-5091 | Security Restriction Bypass vulnerability in HP Hp-Ux 11.11/11.23 Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gain privileges or obtain "unauthorized access" via unspecified vectors. | 7.2 |
| 2006-09-15 | CVE-2006-4820 | Local Denial of Service vulnerability in HP Hp-Ux 11.00/11.11/11.23 Unspecified vulnerability in X.25 on HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors. | 2.1 |
| 2006-09-14 | CVE-2006-4795 | Local Denial of Service vulnerability in HP Hp-Ux 11.11/11.23 Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors. | 4.6 |