Total
705 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0086 | 1 Ibm | 1 Aix | 2024-02-28 | 5.0 MEDIUM | N/A |
AIX routed allows remote users to modify sensitive files. | |||||
CVE-2000-0249 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program. | |||||
CVE-2002-0746 | 1 Ibm | 1 Aix | 2024-02-28 | 10.0 HIGH | N/A |
Vulnerability in template.dhcpo in AIX 4.3.3 related to an insecure linker argument. | |||||
CVE-2001-1329 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument. | |||||
CVE-2000-1222 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program. | |||||
CVE-2002-1622 | 1 Ibm | 1 Aix | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." | |||||
CVE-1999-0338 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
AIX Licensed Program Product performance tools allow local users to gain root access. | |||||
CVE-2003-0784 | 1 Ibm | 1 Aix | 2024-02-28 | 10.0 HIGH | N/A |
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers. | |||||
CVE-1999-1552 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges. | |||||
CVE-1999-1405 | 1 Ibm | 1 Aix | 2024-02-28 | 10.0 HIGH | N/A |
snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. | |||||
CVE-1999-0010 | 8 Data General, Ibm, Isc and 5 more | 11 Dg Ux, Aix, Bind and 8 more | 2024-02-28 | 5.0 MEDIUM | N/A |
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||||
CVE-2003-0954 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in rcp for AIX 4.3.3, 5.1 and 5.2 allows local users to gain privileges. | |||||
CVE-2001-1079 | 1 Ibm | 1 Aix | 2024-02-28 | 3.6 LOW | N/A |
create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which could allow a local user to delete key files and cause a denial of service. | |||||
CVE-1999-0093 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
AIX nslookup command allows local users to obtain root access by not dropping privileges correctly. | |||||
CVE-2001-1554 | 1 Ibm | 1 Aix | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via Path Maximum Transmit Unit (PMTU) IP packets. | |||||
CVE-2003-0064 | 4 Hp, Ibm, Sgi and 1 more | 5 Hp-ux, Aix, Irix and 2 more | 2024-02-28 | 7.5 HIGH | N/A |
The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. | |||||
CVE-2001-1095 | 1 Ibm | 1 Aix | 2024-02-28 | 4.6 MEDIUM | N/A |
Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter. | |||||
CVE-1999-0129 | 7 Bsdi, Eric Allman, Freebsd and 4 more | 9 Bsd Os, Sendmail, Freebsd and 6 more | 2024-02-28 | 4.6 MEDIUM | N/A |
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | |||||
CVE-2003-0285 | 1 Ibm | 1 Aix | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail. | |||||
CVE-2002-1687 | 1 Ibm | 1 Aix | 2024-02-28 | 2.1 LOW | N/A |
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable. |