CVSS: 6.9EPSS: 4%CPEs: 2EXPL: 2CVE-2007-3333 – IBM AIX 5.3 SP6 - Capture Terminal Sequence Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-3333
Stack-based buffer overflow in capture in IBM AIX 5.3 SP6 and 5.2.0 allows remote attackers to execute arbitrary code via a large number of terminal control sequences. Un desbordamiento de búfer en la región stack de la memoria en la captura en IBM AIX versiones 5.3 SP6 y 5.2.0, permite a atacantes remotos ejecutar código arbitrario por medio de un número largo de secuencias de control de terminal. • https://www.exploit-db.com/exploits/4231 https://www.exploit-db.com/exploits/30399 ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=570 http://secunia.com/advisories/26219 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01134 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01135 http://www.securityfocus.com/bid/25075 http://www.securitytracker.com/id?1018464 http://www.vupen.com/english/advisori • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-3680
https://notcve.org/view.php?id=CVE-2007-3680
Stack-based buffer overflow in the odm_searchpath function in libodm in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code via a long ODMPATH environment variable. Desbordamiento de búfer basado en pila en la función odm_searchpath en el libodm del IBM AIX 5.2.0 y 5.3.0 permite a atacantes remotos ejecutar código de su elección mediante la variable de entorno larga ODMPATH. • ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=552 http://osvdb.org/36760 http://secunia.com/advisories/25970 http://securitytracker.com/id?1018345 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97632 http://www.securityfocus.com/bid/24841 http://www.vupen.com/english/advisories/2007/2476 https://exchange.xforce.ibmcloud.com/vulnerabilities/35321 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2007-2995
https://notcve.org/view.php?id=CVE-2007-2995
Unspecified vulnerability in sysmgt.websm.rte in IBM AIX 5.2.0 and 5.3.0 has unknown impact and attack vectors. Vulnerabilidad no especificada en sysmgt.websm.rte en IBM AIX 5.2.0 y 5.3.0 tiene un impacto desconocido y vectores de ataque. • http://osvdb.org/36741 http://secunia.com/advisories/25458 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95526 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95637 http://www.securitytracker.com/id?1018178 http://www.vupen.com/english/advisories/2007/2003 https://exchange.xforce.ibmcloud.com/vulnerabilities/34631 •
CVSS: 6.6EPSS: 0%CPEs: 2EXPL: 0CVE-2007-2996
https://notcve.org/view.php?id=CVE-2007-2996
Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows local users to gain privileges via unspecified vectors related to the installation and "waiting for a legitimate user to execute a binary that ships with Perl." Vulnerabilidad no especificada en perl.rte 5.8.0.10 hasta la 5.8.0.95 sonre IBM AIX 5.2, y 5.8.2.10 hasta la 5.8.2.50 sobre AIX 5.3, permite a usuarios locales ganar privilegios a través de vectores no especificados relacionado con la instalación y "esperando por un usuario legítimo para ejecutar un binaro que se transporte con Perl." • ftp://aix.software.ibm.com/aix/efixes/security/perl_ifix.tar.Z http://osvdb.org/36754 http://secunia.com/advisories/25478 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98394 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98395 http://www-1.ibm.com/support/search.wss?rs=0&q=IY98396&apar=only http://www.securityfocus.com/bid/24241 http://www.securitytracker.com/id?1018177 http://www.vupen.com/english/advisories/2007/2004 •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-1798
https://notcve.org/view.php?id=CVE-2007-1798
Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long path name. Un desbordamiento de búfer en el comando drmgr en IBM AIX versiones 5.2 y 5.3, permite a usuarios locales causar una denegación de servicio (bloqueo) y posiblemente ejecutar código arbitrario por medio de un nombre de ruta largo. • http://osvdb.org/34981 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95054 http://www-1.ibm.com/support/docview.wss?uid=isg1IY96753 http://www-1.ibm.com/support/docview.wss?uid=isg1IY96772 http://www.securitytracker.com/id?1017841 http://www.vupen.com/english/advisories/2007/1186 https://exchange.xforce.ibmcloud.com/vulnerabilities/33354 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12575 •