| CVE-2016-4372 |
critical |
9.8 |
10.0 |
EXP |
|
hp |
10y ago |
HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM before 7.2 E0401P04, iMC NTA before 7.2 E0401P01, iMC BIMS before 7.2 E0402P02, and iMC UAM_TAM before 7.2 E0405P05 allow remote… |
| CVE-2016-2004 |
critical |
9.8 |
10.0 |
EXP |
|
hp |
10y ago |
HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. NOTE: this vulner… |
| CVE-2014-7884 |
critical |
— |
10.0 |
EXP |
|
hp |
11y ago |
Multiple unspecified vulnerabilities in HP ArcSight Logger before 6.0P1 have unknown impact and remote authenticated attack vectors. |
| CVE-2014-2624 |
critical |
— |
10.0 |
EXP |
|
hp |
12y ago |
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x, 9.1x, and 9.2x allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2264. |
| CVE-2014-2623 |
critical |
— |
10.0 |
EXP |
|
hp |
12y ago |
Unspecified vulnerability in HP Storage Data Protector 8.x allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2013-6221 |
critical |
— |
10.0 |
EXP |
|
hp |
12y ago |
Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows remote attackers to create arbitrary file… |
| CVE-2013-6194 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1905. |
| CVE-2013-2347 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port… |
| CVE-2013-4837 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1832. |
| CVE-2013-4822 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP Intelligent Management Center (iMC) and HP IMC Branch Intelligent Management System Software Module (aka BIMS) allows remote attackers to execute arbitrary code via un… |
| CVE-2013-4812 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName a… |
| CVE-2013-4811 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert… |
| CVE-2013-2367 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678. |
| CVE-2013-4800 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1735. |
| CVE-2013-4798 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1705. |
| CVE-2013-2343 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1510. |
| CVE-2013-3576 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en. |
| CVE-2013-2333 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1680. |
| CVE-2012-5201 |
critical |
— |
10.0 |
EXP |
|
hp |
13y ago |
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to execute arbitrary… |
| CVE-2012-3282 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1468. |
| CVE-2012-3274 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via v… |
| CVE-2012-3261 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1463. |
| CVE-2012-3260 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1462. |
| CVE-2012-2020 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1326. |
| CVE-2012-2019 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1325. |
| CVE-2012-0124 |
critical |
— |
10.0 |
EXP |
|
hp |
14y ago |
Unspecified vulnerability in HP Data Protector Express (aka DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service… |
| CVE-2011-4789 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it … |
| CVE-2011-4786 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,… |
| CVE-2011-3167 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1210. |
| CVE-2011-1866 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXE… |
| CVE-2011-1865 |
critical |
— |
10.0 |
EXP |
|
hp |
15y ago |
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted par… |
| CVE-2011-0923 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory." |
| CVE-2011-0922 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname. |
| CVE-2011-0276 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitr… |
| CVE-2011-0267 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams p… |
| CVE-2011-0266 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long nameParams parameter, a different vulnerabi… |
| CVE-2010-2709 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie. |
| CVE-2010-2703 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbi… |
| CVE-2010-1961 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified variables to jovgraph.ex… |
| CVE-2010-1960 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in the error handling functionality in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long, invali… |
| CVE-2010-1039 |
critical |
— |
10.0 |
EXP |
|
hpibm |
16y ago |
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, an… |
| CVE-2010-1555 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter. |
| CVE-2010-1554 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter. |
| CVE-2010-1553 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid MaxAge parameter. |
| CVE-2010-1552 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act an… |
| CVE-2010-1549 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1033 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argu… |
| CVE-2009-3999 |
critical |
— |
10.0 |
EXP |
|
hp |
17y ago |
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. |
