| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory. |
| Buffer overflow in University of Washington's implementation of IMAP and POP servers. |
| Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. |
| pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. |
| Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname. |
| Buffer overflow in AIX libDtSvc library can allow local users to gain root access. |
| Buffer overflow in pioout on AIX 4.3.3. |
| Various vulnerabilities in the AIX portmir command allows local users to obtain root access. |
| AIX nslookup command allows local users to obtain root access by not dropping privileges correctly. |
| AIX piodmgrsu command allows local users to gain additional group privileges. |
| rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files. |
| Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. |
| ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. |
| Some implementations of rlogin allow root access if given a -froot parameter. |
| genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767. |
| Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. |
| Denial of service in BIND named via malformed SIG records. |
| Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. |
| lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack. |
| dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges. |