| CVE-2011-1851 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long mode field. |
| CVE-2011-1850 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in the logging functionality in dbman.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via vectors relat… |
| CVE-2011-1849 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to create or overwrite files, and subsequently execute arbitrary code, via a crafted WRQ request. |
| CVE-2011-1848 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in img.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a crafted length field in a packet. |
| CVE-2011-1735 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed b… |
| CVE-2011-1734 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed o… |
| CVE-2011-1733 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed H… |
| CVE-2011-1732 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed s… |
| CVE-2011-1731 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1730 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1729 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed G… |
| CVE-2011-1728 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed E… |
| CVE-2011-1541 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vector… |
| CVE-2011-1540 |
critical |
— |
9.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. |
| CVE-2011-0889 |
critical |
— |
10.0 |
|
|
hp |
15y ago |
Unspecified vulnerability in HP Client Automation Enterprise (aka HPCA or Radia Notify) 5.11, 7.2, 7.5, 7.8, and 7.9 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2011-0279 |
low |
— |
2.1 |
|
|
hp |
16y ago |
HP Multifunction Peripheral (MFP) Digital Sending Software (DSS) 4.91.00 does not properly configure authentication settings of managed devices within device templates, which allows attackers to acce… |
| CVE-2011-0924 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers to execute arbitrary script code by providing this code with … |
| CVE-2011-0923 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory." |
| CVE-2011-0922 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname. |
| CVE-2011-0921 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
crs.exe in the Cell Manager Service in the client in HP Data Protector does not properly validate credentials associated with the hostname, domain, and username, which allows remote attackers to exec… |
| CVE-2011-0276 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitr… |
| CVE-2011-0273 |
critical |
— |
9.3 |
|
|
hp |
16y ago |
Buffer overflow in crs.exe in HP OpenView Storage Data Protector Cell Manager 6.11 allows remote attackers to execute arbitrary code via unspecified message types. |
| CVE-2011-0272 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP LoadRunner 9.52 allows remote attackers to execute arbitrary code via network traffic to TCP port 5001 or 5002, related to the HttpTunnel feature. |
| CVE-2011-0271 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
The CGI scripts in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 do not properly validate an unspecified parameter, which allows remote attackers to execute arbitrary commands by using a co… |
| CVE-2011-0270 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in input data… |
| CVE-2011-0269 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long schd_select1 parameter. |
| CVE-2011-0268 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long text1 parameter. |
| CVE-2011-0267 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams p… |
| CVE-2011-0266 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long nameParams parameter, a different vulnerabi… |
| CVE-2011-0265 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long data_select1 parameter. |
| CVE-2011-0264 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Stack-based buffer overflow in ovutil.dll in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long COOKIE variable. |
| CVE-2011-0263 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Multiple stack-based buffer overflows in ovas.exe in the OVAS service in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) Source… |
| CVE-2011-0262 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in the stringToSeconds function in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via larg… |
| CVE-2011-0261 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in jovgraph.exe in jovgraph in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a malformed displayWidth option … |
| CVE-2010-4113 |
critical |
— |
9.3 |
|
|
hp |
16y ago |
Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 allows remote attackers to execute arbitrary code via a long Login variable to the management web server. |
| CVE-2010-4116 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5.x before 5.2.2.1771.2 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-4115 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, TS100R025, TS100P002, TS200R005, TS201R014, and TS201R015 installs an undocumented admin account with a default "!admin" password, whi… |
| CVE-2010-3992 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-3009 |
critical |
— |
9.0 |
|
linux-kernel |
hp |
16y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors. |
| CVE-2010-2710 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-2709 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie. |
| CVE-2010-2704 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long HTTP request to nnmrptconfig.exe. |
| CVE-2010-2703 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbi… |
| CVE-2010-1972 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecifie… |
| CVE-2010-1967 |
low |
— |
3.6 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors. |
| CVE-2010-2612 |
low |
— |
2.1 |
|
|
hp |
16y ago |
Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive informatio… |
| CVE-2010-1961 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified variables to jovgraph.ex… |
| CVE-2010-1960 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in the error handling functionality in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long, invali… |
| CVE-2010-1962 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.2.1.870.0 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1039 |
critical |
— |
10.0 |
EXP |
|
hpibm |
16y ago |
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, an… |
| CVE-2010-1555 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter. |
| CVE-2010-1554 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter. |
| CVE-2010-1553 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid MaxAge parameter. |
| CVE-2010-1552 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act an… |
| CVE-2010-1551 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Stack-based buffer overflow in the _OVParseLLA function in ov.dll in netmon.exe in Network Monitor in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute… |
| CVE-2010-1550 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Format string vulnerability in ovet_demandpoll.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in … |
| CVE-2010-1549 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1035 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors. |
| CVE-2010-1033 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argu… |
| CVE-2010-0447 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbi… |
| CVE-2010-0445 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP Network Node Manager (NNM) 8.10, 8.11, 8.12, and 8.13 allows remote attackers to execute arbitrary commands via unknown vectors. |
| CVE-2010-0444 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors. |
| CVE-2009-4000 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traver… |
| CVE-2009-3999 |
critical |
— |
10.0 |
EXP |
|
hp |
17y ago |
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. |
