Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2007-1086 |
Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access." Published: February 23, 2007; 5:28:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-7034 |
SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter. Published: February 22, 2007; 10:28:00 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2007-1043 |
Ezboo webstats, possibly 3.0.3, allows remote attackers to bypass authentication and gain access via a direct request to (1) update.php and (2) config.php. Published: February 21, 2007; 12:28:00 PM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2007-0978 |
Buffer overflow in swcons in IBM AIX 5.3 allows local users to gain privileges via long input data. Published: February 15, 2007; 8:28:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2007-0670 |
Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the "r-commands", possibly including (1) rdist, (2) rsh, (3) rcp, (4) rsync, and (5) rlogin. Published: February 02, 2007; 7:28:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2007-0392 |
IBM AIX 5.3 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572. Published: January 19, 2007; 6:28:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2006-4522 |
Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privileges via unspecified vectors. Published: September 01, 2006; 7:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-4416 |
Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program. Published: August 28, 2006; 4:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-4254 |
Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors. Published: August 21, 2006; 4:04:00 PM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2006-2647 |
Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands via unknown vectors involving lsmcode and possibly other commands. Published: May 30, 2006; 6:02:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-1247 |
rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files. Published: April 19, 2006; 12:06:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2006-1246 |
Unspecified vulnerability in mklvcopy in BOS.RTE.LVM in IBM AIX 5.3 allows local users to execute arbitrary commands when mklvcopy calls external commands, possibly due to an untrusted search path vulnerability. Published: March 17, 2006; 6:02:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2006-0667 |
lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack. Published: March 09, 2006; 8:02:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2006-0666 |
Unspecified vulnerability in the (1) unix_mp and (2) unix_64 kernels in IBM AIX 5.3 VRMF 5.3.0.30 through 5.3.0.33 allows local users to cause a denial of service (system crash) via unknown vectors related to EMULATE_VMX. Published: February 15, 2006; 6:06:00 AM -0500 |
V3.x:(not available) V2.0: 4.9 MEDIUM |
CVE-2006-0674 |
Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument. Published: February 13, 2006; 5:02:00 PM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-2005-4271 |
Buffer overflow in the malloc debug system in IBM AIX 5.3 allows local users to execute arbitrary code. Published: December 15, 2005; 5:03:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-4272 |
Multiple buffer overflows in IBM AIX 5.1, 5.2, and 5.3 allow remote attackers to execute arbitrary code via (1) muxatmd and (2) slocal. Published: December 15, 2005; 5:03:00 PM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2005-4273 |
Multiple unspecified vulnerabilities in (1) getShell and (2) getCommand in IBM AIX 5.3 allow local users to append to arbitrary files. Published: December 15, 2005; 5:03:00 PM -0500 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-2005-4068 |
Unspecified "absolute path vulnerability" in umountall in IBM AIX 5.1 through 5.3 allows local users to cause unknown impact via unknown vectors. Published: December 07, 2005; 8:03:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-2005-3749 |
Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and attack vectors. Published: November 22, 2005; 6:03:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |