Vulnerabilities > HP > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-09-03 | CVE-2008-3537 | Denial of Service vulnerability in HP OpenView Network Node Manager 7.01/7.51/7.53 Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2008-3536. | 7.8 |
2008-09-03 | CVE-2008-3536 | Denial of Service vulnerability in HP OpenView Network Node Manager 7.01/7.51/7.53 Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2008-3537. | 7.8 |
2008-08-14 | CVE-2008-2940 | Permissions, Privileges, and Access Controls vulnerability in HP Linux Imaging and Printing Project 1.6.7 The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message. | 7.2 |
2008-08-08 | CVE-2008-1664 | Remote Denial Of Service vulnerability in HP-UX 'libc' Unspecified vulnerability in libc on HP HP-UX B.11.23 and B.11.31 allows remote attackers to cause a denial of service via unknown vectors. | 7.8 |
2008-08-05 | CVE-2008-3357 | Permissions, Privileges, and Access Controls vulnerability in multiple products Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability." Fixes are available for the current release of Ingres 2006 release 2 (9.1.0), for Ingres 2006 release 1 (9.0.4), and for Ingres 2.6 versions on their respective platforms. | 7.2 |
2008-07-29 | CVE-2008-1667 | Numeric Errors vulnerability in multiple products The Probe Builder Service (aka PBOVISServer.exe) in European Performance Systems (EPS) Probe Builder 2.2 before A.02.20.901, as used in HP OpenView Internet Services (OVIS) on Windows, allows remote attackers to kill arbitrary processes via a process ID number in an unspecified opcode. | 7.8 |
2008-06-04 | CVE-2007-5607 | Code Injection vulnerability in HP Instant Support 1.0.0.22 Buffer overflow in the RegistryString function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long first argument, a different vulnerability than CVE-2007-5604, CVE-2007-5605, and CVE-2007-5606. | 7.5 |
2008-06-04 | CVE-2007-5604 | Code Injection vulnerability in HP Instant Support 1.0.0.22 Buffer overflow in the ExtractCab function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary code via a long first argument, a different vulnerability than CVE-2007-5605, CVE-2007-5606, and CVE-2007-5607. | 7.5 |
2008-05-08 | CVE-2008-1659 | Local Unauthorized Access vulnerability in HP-UX LDAP-UX Unspecified vulnerability in HP LDAP-UX vB.04.10 through vB.04.15 allows local users to gain privileges via unknown vectors. | 7.2 |
2008-04-16 | CVE-2008-1852 | Resource Management Errors vulnerability in HP Openview Network Node Manager 7.51/7.53 ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain requests that specify a large number of sub-arguments, which triggers a NULL pointer dereference due to memory allocation failure. | 7.8 |