VYPR

Vendor CVEs

Microfocus

All CVEs

2,280 total · sorted by risk
  • CVE-2007-0206Jan 12, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, and 7.50 allows remote attackers to read arbitrary files via unknown vectors.

  • CVE-2007-0139Jan 9, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "unintended privileged access to data and system resources" via unspecified vectors,…

  • CVE-2006-6742Dec 26, 2006
    risk 0.00cvss epss 0.03

    Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in…

  • CVE-2006-6608Dec 18, 2006
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in SSH key based authentication in HP Integrated Lights Out (iLO) 1.70 through 1.87, and iLO 2 1.00 through 1.11, on Proliant servers, allows remote attackers to "gain unauthorized access."

  • CVE-2006-6418Dec 10, 2006
    risk 0.00cvss epss 0.01

    Buffer overflow in the POSIX Threads library (libpthread) on HP Tru64 UNIX 4.0F PK8, 4.0G PK4, and 5.1A PK6 allows local users to gain root privileges via a long PTHREAD_CONFIG environment variable.

  • CVE-2006-5782Nov 9, 2006
    risk 0.00cvss epss 0.04

    radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before executing commands in the installation directory, which allows remote attackers to cause a denial of service (reboot) by calling radbootw.exe or create arbitrary files by calling…

  • CVE-2006-5704Nov 4, 2006
    risk 0.00cvss epss 0.00

    HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not properly evaluate access permissions to OSS directories when no optional ACL entry exists, which allows local users to read arbitrary files.

  • CVE-2006-5452Oct 23, 2006
    risk 0.00cvss epss 0.01

    Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.

  • CVE-2006-5300Oct 17, 2006
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in HP Version Control Agent before 2.1.5 allows remote authenticated users to obtain "unauthorized access" to a remote Repository Manager account and potentially gain privileges via unspecified vectors.

  • CVE-2006-5151Oct 5, 2006
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to "gain root access" via unspecified vectors.

  • CVE-2006-5134Oct 3, 2006
    risk 0.00cvss epss 0.01

    Mercury SiteScope 8.2 (8.1.2.0) allows remote authenticated users to cause a denial of service (loss of connectivity to the classic interface) via attempted HTML injection into the "new monitor description" field.

  • CVE-2006-5122Oct 3, 2006
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in Mercury SiteScope 8.2 (8.1.2.0) allow remote authenticated users to inject arbitrary web script or HTML via (1) "any field create name field" except "create new group name" or (2) any description field.

  • CVE-2006-5091Sep 29, 2006
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gain privileges or obtain "unauthorized access" via unspecified vectors.

  • CVE-2006-4820Sep 15, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in X.25 on HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

  • CVE-2006-4803Sep 14, 2006
    risk 0.00cvss epss 0.01

    The Fan-Out Linux and UNIX receiver scripts in Novell Identity Manager (IDM) 3.0.1 allows local users to execute arbitrary commands via unspecified vectors involving certain environment variables and "code injection."

  • CVE-2006-4795Sep 14, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors.

  • CVE-2006-4537Sep 5, 2006
    risk 0.00cvss epss 0.01

    NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when there is a successful connection after a "network breakin" event, which allows local users to obtain passwords by reading the file.

  • CVE-2006-4506Aug 31, 2006
    risk 0.00cvss epss 0.01

    idmlib.sh in nxdrv in Novell Identity Manager (IDM) 3.0.1 allows local users to execute arbitrary commands via unspecified vectors, possibly involving the " (quote) and \ (backslash) characters and eval injection.

  • CVE-2006-4188Aug 17, 2006
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.

  • CVE-2006-4187Aug 17, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors.

  • CVE-2006-4015Aug 7, 2006
    risk 0.00cvss epss 0.04

    Hewlett-Packard (HP) ProCurve 3500yl, 6200yl, and 5400zl switches with software before K.11.33 allow remote attackers to cause a denial of service (possibly memory leak or system crash) via unknown vectors.

  • CVE-2006-3686Jul 21, 2006
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in [SYSEXE]SMPUTIL.EXE in HP OpenVMS 7.3-2 allows local users and "remote users" to cause a denial of service (crash).

  • CVE-2006-3335Jul 3, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.

  • CVE-2006-3201Jun 23, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the kernel in HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

  • CVE-2006-3097Jun 20, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Support Tools Manager (xstm, cstm, and stm) on HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.

  • CVE-2006-2579May 24, 2006
    risk 0.00cvss epss 0.06

    Unspecified vulnerability in HP OpenView Storage Data Protector 5.1 and 5.5 allows remote attackers to execute arbitrary code via unknown vectors.

  • CVE-2006-2574May 24, 2006
    risk 0.00cvss epss 0.01

    Multiple unspecified vulnerabilities in Software Distributor in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allow local users to gain privileges via unspecified attack vectors.

  • CVE-2006-2580May 24, 2006
    risk 0.00cvss epss 0.03

    Multiple unspecified vulnerabilities in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, and 7.50 allow remote attackers to gain privileged access, execute arbitrary commands, or create arbitrary files via unknown vectors.

  • CVE-2006-2551May 23, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the kernel in HP-UX B.11.00 allows local users to cause an unspecified denial of service via unknown vectors.

  • CVE-2006-2092Apr 29, 2006
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in HP StorageWorks Secure Path for Windows 4.0C-SP2 before 20060419 allows remote attackers to cause an unspecified denial of service via unknown vectors.

  • CVE-2006-1774Apr 13, 2006
    risk 0.00cvss epss 0.03

    HP System Management Homepage (SMH) 2.1.3.132, when running on CompaqHTTPServer/9.9 on Windows, Linux, or Tru64 UNIX, and when "Trust by Certificates" is not enabled, allows remote attackers to bypass authentication via a crafted URL.

  • CVE-2006-1689Apr 11, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in su in HP HP-UX B.11.11, when using the LDAP netgroup feature, allows local users to gain unspecified access.

  • CVE-2006-1509Mar 30, 2006
    risk 0.00cvss epss 0.00

    /sbin/passwd in HP-UX B.11.00, B.11.11, and B.11.23 before 20060326 "does not recover gracefully from some error conditions," which allows local users to cause a denial of service.

  • CVE-2006-1389Mar 25, 2006
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in swagentd in HP-UX B.11.00, B.11.04, and B.11.11 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

  • CVE-2006-1248Mar 17, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in usermod in HP-UX B.11.00, B.11.11, and B.11.23, when run with certain options that involve a new home directory, might cause usermod to change the ownership of all directories and files under the new directory, which might result in less secure…

  • CVE-2006-0672Feb 13, 2006
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in HP PSC 1210 All-in-One Drivers before 1.0.06 has unknown impact and attack vectors.

  • CVE-2006-0656Feb 13, 2006
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in HP Systems Insight Manager 4.2 through 5.0 SP3 for Windows allows remote attackers to access arbitrary files via unspecified vectors, a different vulnerability than CVE-2005-2006.

  • CVE-2006-0436Jan 26, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors.

  • CVE-2005-4654Dec 31, 2005
    risk 0.00cvss epss 0.04

    Multiple unspecified vulnerabilities in Oracle for OpenView (OfO) 8.1.7, 9.1.01, and 9.2, and OfO for Linux, allow remote attackers to have an unknown impact via unknown attack vectors. NOTE: because of the lack of details in the vendor advisory, it is unclear which set of…

  • CVE-2005-4451Dec 21, 2005
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Software Distributor in HP-UX B.11.11 allows remote attackers to gain access via unspecified attack vectors.

  • CVE-2005-4350Dec 20, 2005
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in WBEM Services A.01.x before A.01.05.12 and A.02.x before A.02.00.08 on HP-UX B.11.00 through B.11.23 allows remote attackers to cause an unspecified denial of service via unknown attack vectors.

  • CVE-2005-4090Dec 8, 2005
    risk 0.00cvss epss 0.05

    Unspecified vulnerability in HP-UX B.11.00 to B.11.23, when IPSEC is running, allows remote attackers to have unknown impact.

  • CVE-2005-3983Dec 4, 2005
    risk 0.00cvss epss 0.02

    Unknown vulnerability in the login page for HP Systems Insight Manager (SIM) 4.0 and 4.1, when accessed by Microsoft Internet Explorer with the MS04-025 patch, leads to a denial of service (browser hang). NOTE: although the advisory is vague, this issue does not appear to…

  • CVE-2005-3779Nov 23, 2005
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in xterm for HP-UX 11.00, 11.11, and 11.23 allows local users to gain privileges via unknown vectors.

  • CVE-2005-3564Nov 16, 2005
    risk 0.00cvss epss 0.00

    envd daemon in HP-UX B.11.00 through B.11.11 allows local users to obtain privileges via unknown attack vectors.

  • CVE-2005-3565Nov 16, 2005
    risk 0.00cvss epss 0.03

    Unknown vulnerability in remshd daemon in HP-UX B.11.00, B.11.11, and B.11.23 while running in "Trusted Mode" allows remote attackers to gain unauthorized system access via unknown attack vectors.

  • CVE-2005-3476Nov 3, 2005
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP OpenVMS Integrity 8.2-1 and 8.2, and OpenVMS Alpha 7.3-2 and 8.2, allows local users to cause a denial of service.

  • CVE-2005-3296Oct 23, 2005
    risk 0.00cvss epss 0.06

    The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in.

  • CVE-2005-3295Oct 23, 2005
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in HP-UX B.11.23 on Itanium platforms allows local users to cause a denial of service due to a "specific stack size."

  • CVE-2005-2993Sep 20, 2005
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in the FTP Daemon (ftpd) for HP Tru64 UNIX 4.0F PK8 and other versions up to HP Tru64 UNIX 5.1B-3, and HP-UX B.11.00, B.11.04, B.11.11, and B.11.23, allows remote authenticated users to cause a denial of service (hang).

Page 41 of 46