Search Results (Refine Search)
- CPE Product Version: cpe:/o:ibm:aix:5.2
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2007-4354 |
Buffer overflow in fileplace in bos.perf.tools in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Published: August 14, 2007; 8:17:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2007-4236 |
Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privileges. Published: August 08, 2007; 6:17:00 PM -0400 |
V3.x:(not available) V2.0: 6.9 MEDIUM |
CVE-2007-4237 |
Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges. Published: August 08, 2007; 6:17:00 PM -0400 |
V3.x:(not available) V2.0: 6.9 MEDIUM |
CVE-2007-4238 |
AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit. Published: August 08, 2007; 6:17:00 PM -0400 |
V3.x:(not available) V2.0: 6.9 MEDIUM |
CVE-2007-2996 |
Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows local users to gain privileges via unspecified vectors related to the installation and "waiting for a legitimate user to execute a binary that ships with Perl." Published: June 04, 2007; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 6.6 MEDIUM |
CVE-2007-1798 |
Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long path name. Published: April 02, 2007; 6:19:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2007-0670 |
Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the "r-commands", possibly including (1) rdist, (2) rsh, (3) rcp, (4) rsync, and (5) rlogin. Published: February 02, 2007; 7:28:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2006-4522 |
Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privileges via unspecified vectors. Published: September 01, 2006; 7:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-4416 |
Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program. Published: August 28, 2006; 4:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-4254 |
Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors. Published: August 21, 2006; 4:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2006-2647 |
Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands via unknown vectors involving lsmcode and possibly other commands. Published: May 30, 2006; 6:02:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-1247 |
rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files. Published: April 19, 2006; 12:06:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2006-0667 |
lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack. Published: March 09, 2006; 8:02:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2006-0674 |
Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument. Published: February 13, 2006; 5:02:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2005-4272 |
Multiple buffer overflows in IBM AIX 5.1, 5.2, and 5.3 allow remote attackers to execute arbitrary code via (1) muxatmd and (2) slocal. Published: December 15, 2005; 5:03:00 PM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2005-4068 |
Unspecified "absolute path vulnerability" in umountall in IBM AIX 5.1 through 5.3 allows local users to cause unknown impact via unknown vectors. Published: December 07, 2005; 8:03:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-3749 |
Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and attack vectors. Published: November 22, 2005; 6:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-3504 |
Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly execute arbitrary code. Published: November 05, 2005; 6:02:00 AM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2005-3396 |
Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument. Published: November 01, 2005; 7:47:00 AM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2005-3289 |
LSCFG in IBM AIX 5.2 and 5.3 does not create temporary files securely, which allows local users to corrupt /etc/passwd and possibly other system files via the trace file. Published: October 23, 2005; 6:02:00 AM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |