Aix
by IBM
CVEs (402)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1061 | 0.00 | — | 0.02 | Aug 31, 2001 | Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error. | |||
| CVE-2001-0533 | 0.00 | — | 0.00 | Aug 14, 2001 | Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable. | |||
| CVE-2001-0573 | 0.00 | — | 0.00 | Aug 2, 2001 | lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory. | |||
| CVE-2001-0487 | 0.00 | — | 0.02 | Jun 27, 2001 | AIX SNMP server snmpd allows remote attackers to cause a denial of service via a RST during the TCP connection. | |||
| CVE-2001-1329 | 0.00 | — | 0.00 | Jun 11, 2001 | Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument. | |||
| CVE-2001-1330 | 0.00 | — | 0.00 | Jun 11, 2001 | Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument. | |||
| CVE-2000-1122 | 0.00 | — | 0.00 | Jan 9, 2001 | Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument. | |||
| CVE-2000-1123 | 0.00 | — | 0.00 | Jan 9, 2001 | Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands. | |||
| CVE-2000-1222 | 0.00 | — | 0.00 | Dec 10, 2000 | AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program. | |||
| CVE-2000-0466 | 0.00 | — | 0.00 | Jun 20, 2000 | AIX cdmount allows local users to gain root privileges via shell metacharacters. | |||
| CVE-2000-0441 | 0.00 | — | 0.01 | May 24, 2000 | Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems. | |||
| CVE-2000-0249 | 0.00 | — | 0.00 | Apr 26, 2000 | The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program. | |||
| CVE-2000-1216 | 0.00 | — | 0.00 | Jan 27, 2000 | Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine. | |||
| CVE-2000-0080 | 0.00 | — | 0.00 | Jan 10, 2000 | AIX techlibss allows local users to overwrite files via a symlink attack. | |||
| CVE-1999-1589 | 0.00 | — | 0.00 | Dec 31, 1999 | Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors. | |||
| CVE-1999-0851 | 0.00 | — | 0.00 | Nov 10, 1999 | Denial of service in BIND named via naptr. | |||
| CVE-1999-0835 | 0.00 | — | 0.01 | Nov 10, 1999 | Denial of service in BIND named via malformed SIG records. | |||
| CVE-1999-0903 | 0.00 | — | 0.01 | Oct 26, 1999 | genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767. | |||
| CVE-1999-1583 | 0.00 | — | 0.01 | Sep 30, 1999 | Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument. | |||
| CVE-1999-1013 | 0.00 | — | 0.00 | Sep 23, 1999 | named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file. |
- CVE-2001-1061Aug 31, 2001risk 0.00cvss —epss 0.02
Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error.
- CVE-2001-0533Aug 14, 2001risk 0.00cvss —epss 0.00
Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable.
- CVE-2001-0573Aug 2, 2001risk 0.00cvss —epss 0.00
lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory.
- CVE-2001-0487Jun 27, 2001risk 0.00cvss —epss 0.02
AIX SNMP server snmpd allows remote attackers to cause a denial of service via a RST during the TCP connection.
- CVE-2001-1329Jun 11, 2001risk 0.00cvss —epss 0.00
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
- CVE-2001-1330Jun 11, 2001risk 0.00cvss —epss 0.00
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
- CVE-2000-1122Jan 9, 2001risk 0.00cvss —epss 0.00
Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument.
- CVE-2000-1123Jan 9, 2001risk 0.00cvss —epss 0.00
Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands.
- CVE-2000-1222Dec 10, 2000risk 0.00cvss —epss 0.00
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.
- CVE-2000-0466Jun 20, 2000risk 0.00cvss —epss 0.00
AIX cdmount allows local users to gain root privileges via shell metacharacters.
- CVE-2000-0441May 24, 2000risk 0.00cvss —epss 0.01
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
- CVE-2000-0249Apr 26, 2000risk 0.00cvss —epss 0.00
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program.
- CVE-2000-1216Jan 27, 2000risk 0.00cvss —epss 0.00
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine.
- CVE-2000-0080Jan 10, 2000risk 0.00cvss —epss 0.00
AIX techlibss allows local users to overwrite files via a symlink attack.
- CVE-1999-1589Dec 31, 1999risk 0.00cvss —epss 0.00
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors.
- CVE-1999-0851Nov 10, 1999risk 0.00cvss —epss 0.00
Denial of service in BIND named via naptr.
- CVE-1999-0835Nov 10, 1999risk 0.00cvss —epss 0.01
Denial of service in BIND named via malformed SIG records.
- CVE-1999-0903Oct 26, 1999risk 0.00cvss —epss 0.01
genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.
- CVE-1999-1583Sep 30, 1999risk 0.00cvss —epss 0.01
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument.
- CVE-1999-1013Sep 23, 1999risk 0.00cvss —epss 0.00
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file.
Page 18 of 21