CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

HP » Tru64 » 4.0f * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:hp:tru64:4.0f:*:*:*:*:*:*:*
CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2006-5452 Exec Code Overflow 2006-10-23 2018-10-17
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.
2 CVE-2003-1496 119 Overflow +Priv 2003-12-31 2017-07-29
10.0
 None Remote Low Not required Complete Complete Complete
Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840.
3 CVE-2002-1784 DoS 2002-12-31 2008-09-05
5.0
 None Remote Low Not required None None Partial
Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a allows remote attackers to cause a denial of service via unknown attack vectors.
4 CVE-2002-1616 Overflow +Priv 2002-08-01 2017-07-11
7.2
 None Local Low Not required Complete Complete Complete
Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.
5 CVE-2002-1615 Exec Code Overflow 2002-09-13 2017-07-11
7.2
 None Local Low Not required Complete Complete Complete
Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to execute arbitrary code via (1) msgchk or (2) .upd..loader.
6 CVE-2002-1614 Exec Code Overflow 2002-09-09 2017-07-11
7.2
 None Local Low Not required Complete Complete Complete
Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.
7 CVE-2002-1613 Overflow +Priv 2002-09-10 2017-07-11
7.2
 None Local Low Not required Complete Complete Complete
Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.
8 CVE-2002-1612 Overflow +Priv 2002-09-13 2017-07-11
7.2
 None Local Low Not required Complete Complete Complete
Buffer overflow in mailcv in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.
9 CVE-2002-1611 Overflow +Priv 2002-08-30 2017-07-11
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.
10 CVE-2002-1610 DoS 2002-08-30 2017-07-11
2.1
 None Local Low Not required None None Partial
Unknown vulnerability in ping in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to cause a denial of service.
11 CVE-2002-1609 Overflow +Priv 2002-08-30 2017-07-11
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.
12 CVE-2002-1608 Exec Code Overflow 2002-08-31 2017-07-11
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.
13 CVE-2002-1607 Exec Code Overflow 2002-08-31 2017-07-11
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code.
14 CVE-2002-1606 Overflow +Priv 2002-08-30 2017-07-11
4.6
 None Local Low Not required Partial Partial Partial
Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm.
15 CVE-2002-1605 Exec Code Overflow 2002-09-02 2017-07-11
7.5
 None Remote Low Not required Partial Partial Partial
Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.
16 CVE-2002-1604 Exec Code Overflow 2002-09-02 2017-07-11
7.5
 None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver.
17 CVE-2002-1475 DoS 2003-04-22 2008-09-05
5.0
 None Remote Low Not required None None Partial
Unknown vulnerability in the ARP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to "take over packets destined for another host" and cause a denial of service.
18 CVE-2002-1474 DoS 2003-04-22 2008-09-05
5.0
 None Remote Low Not required None None Partial
Unknown vulnerability or vulnerabilities in TCP/IP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to cause a denial of service.
19 CVE-2000-1031 Exec Code Overflow 2000-12-11 2018-05-03
4.6
 None Local Low Not required Partial Partial Partial
Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.
Total number of vulnerabilities : 19   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.