Aix
by IBM
CVEs (402)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0687 | 0.00 | — | 0.02 | Sep 13, 1999 | The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. | |||
| CVE-1999-0694 | 0.00 | — | 0.00 | Aug 11, 1999 | Denial of service in AIX ptrace system call allows local users to crash the system. | |||
| CVE-1999-1079 | 0.00 | — | 0.00 | May 6, 1999 | Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. | |||
| CVE-1999-0088 | 0.00 | — | 0.04 | Oct 26, 1998 | IRIX and AIX automountd services (autofsd) allow remote users to execute root commands. | |||
| CVE-1999-1574 | 0.00 | — | 0.03 | Jul 6, 1998 | Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long input strings." | |||
| CVE-1999-1480 | 0.00 | — | 0.00 | Jun 11, 1998 | (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | |||
| CVE-1999-0055 | 0.00 | — | 0.00 | May 14, 1998 | Buffer overflows in Sun libnsl allow root access. | |||
| CVE-1999-0010 | 0.00 | — | 0.02 | Apr 8, 1998 | Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||
| CVE-1999-1075 | 0.00 | — | 0.01 | Mar 18, 1998 | inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1,… | |||
| CVE-1999-1486 | 0.00 | — | 0.00 | Feb 25, 1998 | sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack. | |||
| CVE-1999-0087 | 0.00 | — | 0.01 | Feb 1, 1998 | Denial of service in AIX telnet can freeze a system and prevent users from accessing the server. | |||
| CVE-1999-1487 | 0.00 | — | 0.00 | Jan 21, 1998 | Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system. | |||
| CVE-1999-0086 | 0.00 | — | 0.02 | Jan 8, 1998 | AIX routed allows remote users to modify sensitive files. | |||
| CVE-1999-0017 | 0.00 | — | 0.02 | Dec 10, 1997 | FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. | |||
| CVE-1999-0097 | 0.00 | — | 0.04 | Oct 29, 1997 | The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). | |||
| CVE-1999-0094 | 0.00 | — | 0.00 | Oct 29, 1997 | AIX piodmgrsu command allows local users to gain additional group privileges. | |||
| CVE-1999-0093 | 0.00 | — | 0.00 | Oct 29, 1997 | AIX nslookup command allows local users to obtain root access by not dropping privileges correctly. | |||
| CVE-1999-0091 | 0.00 | — | 0.00 | Oct 28, 1997 | Buffer overflow in AIX writesrv command allows local users to obtain root access. | |||
| CVE-1999-0089 | 0.00 | — | 0.00 | Oct 28, 1997 | Buffer overflow in AIX libDtSvc library can allow local users to gain root access. | |||
| CVE-1999-0072 | 0.00 | — | 0.00 | Oct 22, 1997 | Buffer overflow in AIX xdat gives root access to local users. |
- CVE-1999-0687Sep 13, 1999risk 0.00cvss —epss 0.02
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
- CVE-1999-0694Aug 11, 1999risk 0.00cvss —epss 0.00
Denial of service in AIX ptrace system call allows local users to crash the system.
- CVE-1999-1079May 6, 1999risk 0.00cvss —epss 0.00
Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.
- CVE-1999-0088Oct 26, 1998risk 0.00cvss —epss 0.04
IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.
- CVE-1999-1574Jul 6, 1998risk 0.00cvss —epss 0.03
Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long input strings."
- CVE-1999-1480Jun 11, 1998risk 0.00cvss —epss 0.00
(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.
- CVE-1999-0055May 14, 1998risk 0.00cvss —epss 0.00
Buffer overflows in Sun libnsl allow root access.
- CVE-1999-0010Apr 8, 1998risk 0.00cvss —epss 0.02
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
- CVE-1999-1075Mar 18, 1998risk 0.00cvss —epss 0.01
inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1,…
- CVE-1999-1486Feb 25, 1998risk 0.00cvss —epss 0.00
sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack.
- CVE-1999-0087Feb 1, 1998risk 0.00cvss —epss 0.01
Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.
- CVE-1999-1487Jan 21, 1998risk 0.00cvss —epss 0.00
Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system.
- CVE-1999-0086Jan 8, 1998risk 0.00cvss —epss 0.02
AIX routed allows remote users to modify sensitive files.
- CVE-1999-0017Dec 10, 1997risk 0.00cvss —epss 0.02
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
- CVE-1999-0097Oct 29, 1997risk 0.00cvss —epss 0.04
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).
- CVE-1999-0094Oct 29, 1997risk 0.00cvss —epss 0.00
AIX piodmgrsu command allows local users to gain additional group privileges.
- CVE-1999-0093Oct 29, 1997risk 0.00cvss —epss 0.00
AIX nslookup command allows local users to obtain root access by not dropping privileges correctly.
- CVE-1999-0091Oct 28, 1997risk 0.00cvss —epss 0.00
Buffer overflow in AIX writesrv command allows local users to obtain root access.
- CVE-1999-0089Oct 28, 1997risk 0.00cvss —epss 0.00
Buffer overflow in AIX libDtSvc library can allow local users to gain root access.
- CVE-1999-0072Oct 22, 1997risk 0.00cvss —epss 0.00
Buffer overflow in AIX xdat gives root access to local users.
Page 19 of 21