Vulnerabilities > HP > HP UX > b.11.23
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-08-30 | CVE-2010-2712 | Unspecified vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 Unspecified vulnerability in Software Distributor (sd) in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. | 6.8 |
2010-05-20 | CVE-2010-1039 | USE of Externally-Controlled Format String vulnerability in multiple products Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name. | 10.0 |
2010-03-29 | CVE-2010-0452 | Cross-Site Scripting vulnerability in HP Project and Portfolio Management Center Multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC, formerly Mercury IT Governance) 7.1 through SP10 and 7.5 through SP3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
2009-10-05 | CVE-2009-2679 | Remote Denial Of Service vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors. | 7.8 |
2009-09-24 | CVE-2009-2682 | Permissions, Privileges, and Access Controls vulnerability in HP Hp-Ux B.11.23/B.11.31 Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors. | 7.2 |
2009-04-29 | CVE-2009-0719 | Local Unauthorized Access vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unknown vectors, a different issue than CVE-2008-1660. local hp | 6.0 |
2009-03-25 | CVE-2009-0207 | Local Privilege Escalation vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 Unspecified vulnerability in HP-UX B.11.11 running VERITAS Oracle Disk Manager (VRTSodm) 3.5, B.11.23 running VRTSodm 4.1 or VERITAS File System (VRTSvxfs) 4.1, B.11.23 running VRTSodm 5.0 or VRTSvxfs 5.0, and B.11.31 running VRTSodm 5.0 allows local users to gain root privileges via unknown vectors. | 6.8 |
2009-02-04 | CVE-2009-0418 | Improper Input Validation vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476. | 9.3 |
2008-12-11 | CVE-2008-4418 | Remote Denial Of Service vulnerability in HP Hp-Ux B.11.11/B.11.23/B.11.31 Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown vectors. | 7.8 |
2008-08-01 | CVE-2008-1662 | Configuration vulnerability in HP Hp-Ux and System Administration Manager Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might allow remote attackers to read or modify arbitrary files, related to an "empty systems list." | 10.0 |