| CVE-2010-2710 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-2709 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie. |
| CVE-2010-2704 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long HTTP request to nnmrptconfig.exe. |
| CVE-2010-2703 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbi… |
| CVE-2010-1973 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users … |
| CVE-2010-1972 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecifie… |
| CVE-2010-1969 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP Virtual Connect Enterprise Manager for Windows before 6.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. |
| CVE-2010-1971 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors… |
| CVE-2010-1970 |
medium |
— |
4.6 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data, and consequently gain privileges, via unknown vectors. |
| CVE-2010-1968 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP Insight Software Installer for Windows before 6.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors… |
| CVE-2010-1967 |
low |
— |
3.6 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors. |
| CVE-2010-1966 |
medium |
— |
4.6 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control power management for Windows before 6.1 allows local users to read or modify data, or cause a denial of service, via unknown vectors. |
| CVE-2010-1965 |
high |
— |
7.5 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Orchestration for Windows before 6.1 allows remote attackers to read or modify data via unknown vectors. |
| CVE-2010-2612 |
low |
— |
2.1 |
|
|
hp |
16y ago |
Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive informatio… |
| CVE-2010-1964 |
high |
— |
8.5 |
EXP |
|
hp |
16y ago |
Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CA… |
| CVE-2010-1961 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified variables to jovgraph.ex… |
| CVE-2010-1960 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Buffer overflow in the error handling functionality in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long, invali… |
| CVE-2010-1963 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP ServiceCenter allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-1962 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.2.1.870.0 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1959 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors. |
| CVE-2010-1039 |
critical |
— |
10.0 |
EXP |
|
hpibm |
16y ago |
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, an… |
| CVE-2010-1557 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-1556 |
medium |
— |
6.4 |
|
linux-kernel |
hp |
16y ago |
Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors. |
| CVE-2010-1558 |
medium |
— |
4.7 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital Sending Software before 4.18.3 allows local users to bypass intended restrictions on the MFP "Send to e-mail" feature, and obtai… |
| CVE-2010-1555 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter. |
| CVE-2010-1554 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter. |
| CVE-2010-1553 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid MaxAge parameter. |
| CVE-2010-1552 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act an… |
| CVE-2010-1551 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Stack-based buffer overflow in the _OVParseLLA function in ov.dll in netmon.exe in Network Monitor in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute… |
| CVE-2010-1550 |
critical |
— |
10.0 |
|
|
hp |
16y ago |
Format string vulnerability in ovet_demandpoll.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via format string specifiers in … |
| CVE-2010-1549 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors. |
| CVE-2010-1586 |
medium |
— |
5.3 |
EXP |
|
hp |
16y ago |
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the Redire… |
| CVE-2010-1038 |
medium |
— |
6.5 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-1037 |
medium |
— |
6.8 |
|
|
hp |
16y ago |
Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. |
| CVE-2010-1036 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-1035 |
critical |
— |
9.0 |
|
|
hp |
16y ago |
Multiple unspecified vulnerabilities in HP Virtual Machine Manager (VMM) before 6.0 allow remote authenticated users to execute arbitrary code via unknown vectors. |
| CVE-2010-1034 |
medium |
— |
4.6 |
|
linux-kernel |
hp |
16y ago |
Unspecified vulnerability in HP System Management Homepage (SMH) 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, m… |
| CVE-2010-1033 |
critical |
— |
10.0 |
EXP |
|
hp |
16y ago |
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argu… |
| CVE-2010-1031 |
medium |
— |
6.9 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP Insight Control for Linux (aka IC-Linux or ICE-LX) 2.11 and earlier allows local users to gain privileges via unknown vectors. |
| CVE-2010-0450 |
high |
— |
8.5 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote authenticated users to gain privileges via unknown vectors. |
| CVE-2010-0449 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Cross-site scripting (XSS) vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. |
| CVE-2010-0448 |
medium |
— |
5.0 |
|
|
hp |
16y ago |
Unspecified vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote attackers to obtain "unauthorized access to data" via unknown vectors. |
| CVE-2010-0452 |
medium |
— |
4.3 |
|
|
hp |
16y ago |
Multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC, formerly Mercury IT Governance) 7.1 through SP10 and 7.5 through SP3 allow remote attackers to… |
| CVE-2010-0447 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbi… |
| CVE-2010-0446 |
medium |
— |
4.3 |
|
|
hp |
17y ago |
Unspecified vulnerability on the HP DreamScreen 100 and 130 with firmware before 1.6.0.0, when using a web-connected configuration, allows remote attackers to obtain sensitive information via unknown… |
| CVE-2010-0445 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP Network Node Manager (NNM) 8.10, 8.11, 8.12, and 8.13 allows remote attackers to execute arbitrary commands via unknown vectors. |
| CVE-2010-0444 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors. |
| CVE-2009-4185 |
medium |
— |
4.3 |
|
|
hp |
17y ago |
Cross-site scripting (XSS) vulnerability in proxy/smhui/getuiinfo in HP System Management Homepage (SMH) before 6.0 allows remote attackers to inject arbitrary web script or HTML via the servercert p… |
| CVE-2010-0443 |
medium |
— |
6.8 |
|
|
hp |
17y ago |
Unspecified vulnerability in Record Management Services (RMS) before VMS83A_RMS-V1100 for HP OpenVMS on the Alpha platform allows local users to gain privileges via unknown vectors. |
| CVE-2009-4184 |
medium |
— |
6.2 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP Enterprise Cluster Master Toolkit (ECMT) B.05.00 on HP-UX B.11.23 (11i v2) and HP-UX B.11.31 (11i v3) allows local users to gain access to an Oracle or Sybase database… |
| CVE-2009-4183 |
medium |
— |
4.6 |
|
|
hp |
17y ago |
Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 and 6.10 allows local users to obtain unspecified "access" via unknown vectors. |
| CVE-2009-4000 |
critical |
— |
10.0 |
|
|
hp |
17y ago |
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traver… |
| CVE-2009-3999 |
critical |
— |
10.0 |
EXP |
|
hp |
17y ago |
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter. |
