Vulnerabilities > HP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-08-12 | CVE-2002-0638 | setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh. | 6.2 |
| 2002-08-12 | CVE-2002-0529 | Unspecified vulnerability in HP Photosmart Print Driver 1.2.1 HP Photosmart printer driver for Mac OS X installs the hp_imaging_connectivity program and the hp_imaging_connectivity.app directory with world-writable permissions, which allows local users to gain privileges of other Photosmart users by replacing hp_imaging_connectivity with a Trojan horse. | 6.2 |
| 2002-08-01 | CVE-2002-1616 | Local Privilege Escalation vulnerability in Tru64 CHSH Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc. | 7.2 |
| 2002-07-23 | CVE-2002-0678 | Symbolic Link vulnerability in Multiple Vendor CDE ToolTalk Database Server CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. | 7.2 |
| 2002-07-23 | CVE-2002-0677 | CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | 7.5 |
| 2002-06-25 | CVE-2002-0350 | Denial of Service vulnerability in HP ProCurve Switch HP Procurve Switch 4000M running firmware C.08.22 and C.09.09 allows remote attackers to cause a denial of service via a port scan of the management IP address, which disables the telnet service. | 7.8 |
| 2002-06-18 | CVE-2002-0610 | Unspecified vulnerability in HP MPE IX 6.0/6.5/7.0 Vulnerability in FTPSRVR in HP MPE/iX 6.0 through 7.0 does not properly validate certain FTP commands, which allows attackers to gain privileges. | 7.5 |
| 2002-06-18 | CVE-2002-0609 | Denial of Service vulnerability in HP MPE IX 6.0/6.5/7.0 Vulnerability in HP MPE/iX 6.0 through 7.0 allows attackers to cause a denial of service (system failure with "SA1457 out of i_port_timeout.fix_up_message_frame") via malformed IP packets. | 5.0 |
| 2002-06-18 | CVE-2002-0585 | Denial of Service vulnerability in HP Hp-Ux 11.11 Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches allows attackers to cause a denial of service. | 5.0 |
| 2002-06-18 | CVE-2002-0577 | File Corruption vulnerability in HP Hp-Ux 11.0.4/11.00/11.11 Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file and cause a denial of service. | 2.1 |