Buffer overflow in rpc.yppasswdd (yppasswd server) in AIX allows attackers to gain unauthorized access via a long string. NOTE: due to lack of details in the vendor advisory, it is not clear if this is the same issue as CVE-2001-0779.

Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error.

lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory.

AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.

Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.

Vacation program allows command execution by remote users through a sendmail command.

An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities.

Command execution in Sun systems via buffer overflow in the at program.

Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.

The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.