The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

Vulnerability in HP-UX mediainit program.

Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges.

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Buffer overflow in xlock program allows local users to execute commands as root.

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.

Buffer overflow of rlogin program using TERM environmental variable.

HP-UX vgdisplay program gives root access to local users.

Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain privileges.

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges.