| CVE-2010-1550 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Format string vulnerability in ovet_demandpoll.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in … |
| CVE-2010-1549 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1586 |
medium |
— |
5.3 |
EXP |
|
hp |
16y ago |
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the Redire… |
| CVE-2010-1038 |
medium |
— |
6.5 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-1037 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2010-1036 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-1035 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors. |
| CVE-2010-1034 |
medium |
— |
4.6 |
|
linux-kernel |
hp |
16y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, m… |
| CVE-2010-1033 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argu… |
| CVE-2010-1031 |
medium |
— |
6.9 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux or ICE-LX) 2.11 and earlier allows local users to gain privileges via unknown vectors. |
| CVE-2010-0450 |
high |
— |
8.5 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-0449 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. |
| CVE-2010-0448 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote attackers to obtain "unauthorized access to data" via unknown vectors. |
| CVE-2010-0452 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC, formerly Mercury IT Governance) 7.1 through SP10 and 7.5 through SP3 allow remote attackers to… |
| CVE-2010-0447 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbi… |
| CVE-2010-0446 |
medium |
— |
4.3 |
|
|
hp |
17y ago |
Unspecified vulnerability on the HP DreamScreen 100 and 130 with firmware before 1.6.0.0, when using a web-connected configuration, allows remote attackers to obtain sensitive information via unknown… |
| CVE-2010-0445 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP Network Node Manager (NNM) 8.10, 8.11, 8.12, and 8.13 allows remote attackers to execute arbitrary commands via unknown vectors. |
| CVE-2010-0444 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors. |
| CVE-2009-4185 |
medium |
— |
4.3 |
|
|
hp |
17y ago |
Cross-site scripting (XSS) vulnerability in proxy/smhui/getuiinfo in HP System Management Homepage (SMH) before 6.0 allows remote attackers to inject arbitrary web script or HTML via the servercert p… |
| CVE-2010-0443 |
medium |
— |
6.8 |
|
|
hp |
17y ago |
Unspecified vulnerability in Record Management Services (RMS) before VMS83A_RMS-V1100 for HP OpenVMS on the Alpha platform allows local users to gain privileges via unknown vectors. |
| CVE-2009-4184 |
medium |
— |
6.2 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 on HP-UX B.11.23 (11i v2) and HP-UX B.11.31 (11i v3) allows local users to gain access to an Oracle or Sybase database… |
| CVE-2009-4183 |
medium |
— |
4.6 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 and 6.10 allows local users to obtain unspecified "access" via unknown vectors. |
| CVE-2009-4000 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traver… |
| CVE-2009-3999 |
critical |
— |
10.0 |
EXP |
|
hp |
17y ago |
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. |
