|
Vulnerability Report: HP Tru64 UNIX 4.x
|
This vulnerability report for HP Tru64 UNIX 4.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in HP Tru64 UNIX 4.x then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
38 Secunia Advisories in 2003-2009
|
Secunia has issued a total of 38 Secunia advisories in 2003-2009 for HP Tru64 UNIX 4.x. Currently, 0% (0 out of 38) are marked as unpatched.
More information about the specific Secunia advisories affecting HP Tru64 UNIX 4.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2007-05-04 |
Secunia Advisory ID:
SA25135 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
A security issue has been reported in HP Tru64, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-18 |
Secunia Advisory ID:
SA24930 |
Solution Status:
Vendor Workaround |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged some vulnerabilities in HP Tru64 Unix. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-13 |
Secunia Advisory ID:
SA22743 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
A vulnerability has been reported in HP Tru64, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-31 |
Secunia Advisory ID:
SA22661 |
Solution Status:
Vendor Workaround |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged some vulnerabilities in HP Tru64 Unix, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-23 |
Secunia Advisory ID:
SA22528 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Netragard has reported a vulnerability in HP Tru64 Unix, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-07-19 |
Secunia Advisory ID:
SA21112 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
HP has acknowledged a vulnerability in HP Tru64 Unix, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable NIS server. [Read More]
|
|
|
|
|
|
Release Date:
2006-06-07 |
Secunia Advisory ID:
SA20473 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged two vulnerabilities in HP Tru64 UNIX and HP Internet Express running sendmail, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-05-23 |
Secunia Advisory ID:
SA20214 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged a vulnerability in HP Tru64 UNIX running Firefox/Mozilla Application Suite, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-02-02 |
Secunia Advisory ID:
SA18690 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
Manipulation of data
|
Where:
From remote |
|
Short Description:
A vulnerability has been reported in HP Tru64 UNIX, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-21 |
Secunia Advisory ID:
SA16893 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
A vulnerability has been reported in HP Tru64 UNIX, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-09-21 |
Secunia Advisory ID:
SA16879 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged some vulnerabilities in HP Tru64 UNIX, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-19 |
Secunia Advisory ID:
SA16119 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
DoS
|
Where:
From remote |
|
Short Description:
HP has acknowledged some vulnerabilities in HP Tru64 UNIX, which can be exploited by malicious people to cause various types of DoS (Denial of Service) or spoof TCP traffic. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-10 |
Secunia Advisory ID:
SA14549 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
|
Where:
Local system |
|
Short Description:
A vulnerability has been reported in HP Tru64 UNIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-12-24 |
Secunia Advisory ID:
SA13648 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
HP has acknowledged a vulnerability in Tru64 UNIX, which can be exploited by malicious people to reset established TCP connections on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-21 |
Secunia Advisory ID:
SA12897 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Two vulnerabilities have been reported in HP Tru64 UNIX, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-02 |
Secunia Advisory ID:
SA10334 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
HP has issued updated packages for bind. These fix a vulnerability, which can be exploited to poison the DNS cache with negative entries. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-27 |
Secunia Advisory ID:
SA10070 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From local network |
|
Short Description:
HP has reported a vulnerability in HP Tru64 UNIX, which reportedly can be exploited by malicious users to gain unauthorised privileged access to a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-13 |
Secunia Advisory ID:
SA9990 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
HP has reported a vulnerability in Tru64 Unix, which can be exploited by malicious, local users to escalate privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-06 |
Secunia Advisory ID:
SA9947 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
HP has acknowledged that Tru64 Unix and Internet Express are affected by a vulnerability in sendmail. This can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-08 |
Secunia Advisory ID:
SA9679 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
HP has released an update for dtterm. This fixes a local Denial of Service vulnerability. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-14 |
Secunia Advisory ID:
SA9524 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
HP has acknowledged some older vulnerabilities in Tru64 UNIX, which can be exploited by malicious people to gain knowledge of various information. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-30 |
Secunia Advisory ID:
SA8694 |
Solution Status:
Vendor Workaround |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
HP has reported a vulnerability in Tru64 Unix, which potentially can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-22 |
Secunia Advisory ID:
SA8631 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-04-07 |
Secunia Advisory ID:
SA8533 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Samba is vulnerable to a buffer overflow, which can be exploited by anonymous users. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-04 |
Secunia Advisory ID:
SA8512 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
HP has issued Early Release Patch (ERP) kits for sendmail. These fix a vulnerability in the address parsing, which potentially can be exploited to compromise a vulnerable mail server. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-02 |
Secunia Advisory ID:
SA8489 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
System access
|
Where:
From remote |
|
Short Description:
HP has released Early Release Patch (ERP) kits, which fix a number of known vulnerabilities and some unspecified issues in libc. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-30 |
Secunia Advisory ID:
SA8446 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been discovered in Sendmail, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-20 |
Secunia Advisory ID:
SA8347 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
A vulnerability identified in multiple *NIX operating systems and software can be exploited by malicious people to conduct a DoS attack (Denial of Service) on a vulnerable system or potentially compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-18 |
Secunia Advisory ID:
SA8327 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From remote |
|
Short Description:
HP has released Early Release Patch kits, which fix an unspecified vulnerability caused by an error in the handling of the stdio (Standard Input/Output) file descriptors and can be exploited by malicious non-privileged users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-17 |
Secunia Advisory ID:
SA8299 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
A vulnerability has been identified in Samba, which can be exploited by a malicious person to compromise a vulnerable server. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-05 |
Secunia Advisory ID:
SA8215 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
HP has issued patches for Sendmail. These eliminate an extremely critical vulnerability, which can result in remote root compromise of a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2002-11-25 |
Secunia Advisory ID:
SA7592 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
uudecode does not verify if it is writing to a file, a symlink or an open pipe, this could be abused if one local user decodes files into a shared directory like tmp. [Read More]
|
|
|
|
|
|
Release Date:
2002-11-14 |
Secunia Advisory ID:
SA7513 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
HP has issued updates to it LDAP implementation OSIS. A vulnerability has been discovered which allows non privileged users to gain access to files and escalate privileges. [Read More]
|
|
|
|
|
|
Release Date:
2002-11-13 |
Secunia Advisory ID:
SA7502 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
According to HP a potential Denial of Service exists in the IGMP implementation. [Read More]
|
|
|
|
|
|
Release Date:
2002-10-09 |
Secunia Advisory ID:
SA7259 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
HP has issued to three vulnerabilities in ypxfrd, ypserv and routed. [Read More]
|
|
|
|
|
|
Release Date:
2002-09-11 |
Secunia Advisory ID:
SA7097 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
A number of vulnerabilities exist in TCP/IP, FTPD and ARP [Read More]
|
|
|
|
|
|
Release Date:
2002-09-04 |
Secunia Advisory ID:
SA7066 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
The vulnerabilities lies within the Secure Web Server for HP Tru64 Unix, and does not affect the core HP Tru64 operating system unless the Secure Web Server has been installed. [Read More]
|
|
|
|
|
|
Release Date:
2002-08-31 |
Secunia Advisory ID:
SA1 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
There is been identified numerours potential buffer overflow in various system utilities in HP Tru64 Unix. [Read More]
|
|
|
