CVE-2007-4004 – IBM AIX 5.3 SP6 - FTP 'gets()' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-4004
Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the client is setuid root on AIX, so this issue crosses privilege boundaries. Un desbordamiento de búfer en el cliente ftp en IBM AIX versiones 5.3 SP6 y 5.2.0, permite a usuarios locales ejecutar código arbitrario por medio de vectores no especificados que desencadenan el desbordamiento en una llamada de la función gets. NOTA: el cliente es root del setuid en AIX, por lo que este problema cruza los límites de privilegios. • https://www.exploit-db.com/exploits/4233 ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=571 http://secunia.com/advisories/26219 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01812 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01813 http://www.securityfocus.com/bid/25077 http://www.securitytracker.com/id?1018465 http://www.vupen.com/english/advisories/2007/2675 https://exchange.xforce.ibmcloud& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-3333 – IBM AIX 5.3 SP6 - Capture Terminal Sequence Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-3333
Stack-based buffer overflow in capture in IBM AIX 5.3 SP6 and 5.2.0 allows remote attackers to execute arbitrary code via a large number of terminal control sequences. Un desbordamiento de búfer en la región stack de la memoria en la captura en IBM AIX versiones 5.3 SP6 y 5.2.0, permite a atacantes remotos ejecutar código arbitrario por medio de un número largo de secuencias de control de terminal. • https://www.exploit-db.com/exploits/4231 https://www.exploit-db.com/exploits/30399 ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=570 http://secunia.com/advisories/26219 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01134 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01135 http://www.securityfocus.com/bid/25075 http://www.securitytracker.com/id?1018464 http://www.vupen.com/english/advisori • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-3680
https://notcve.org/view.php?id=CVE-2007-3680
Stack-based buffer overflow in the odm_searchpath function in libodm in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code via a long ODMPATH environment variable. Desbordamiento de búfer basado en pila en la función odm_searchpath en el libodm del IBM AIX 5.2.0 y 5.3.0 permite a atacantes remotos ejecutar código de su elección mediante la variable de entorno larga ODMPATH. • ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=552 http://osvdb.org/36760 http://secunia.com/advisories/25970 http://securitytracker.com/id?1018345 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97632 http://www.securityfocus.com/bid/24841 http://www.vupen.com/english/advisories/2007/2476 https://exchange.xforce.ibmcloud.com/vulnerabilities/35321 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-2995
https://notcve.org/view.php?id=CVE-2007-2995
Unspecified vulnerability in sysmgt.websm.rte in IBM AIX 5.2.0 and 5.3.0 has unknown impact and attack vectors. Vulnerabilidad no especificada en sysmgt.websm.rte en IBM AIX 5.2.0 y 5.3.0 tiene un impacto desconocido y vectores de ataque. • http://osvdb.org/36741 http://secunia.com/advisories/25458 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95526 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95637 http://www.securitytracker.com/id?1018178 http://www.vupen.com/english/advisories/2007/2003 https://exchange.xforce.ibmcloud.com/vulnerabilities/34631 •
CVE-2007-2996
https://notcve.org/view.php?id=CVE-2007-2996
Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows local users to gain privileges via unspecified vectors related to the installation and "waiting for a legitimate user to execute a binary that ships with Perl." Vulnerabilidad no especificada en perl.rte 5.8.0.10 hasta la 5.8.0.95 sonre IBM AIX 5.2, y 5.8.2.10 hasta la 5.8.2.50 sobre AIX 5.3, permite a usuarios locales ganar privilegios a través de vectores no especificados relacionado con la instalación y "esperando por un usuario legítimo para ejecutar un binaro que se transporte con Perl." • ftp://aix.software.ibm.com/aix/efixes/security/perl_ifix.tar.Z http://osvdb.org/36754 http://secunia.com/advisories/25478 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98394 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98395 http://www-1.ibm.com/support/search.wss?rs=0&q=IY98396&apar=only http://www.securityfocus.com/bid/24241 http://www.securitytracker.com/id?1018177 http://www.vupen.com/english/advisories/2007/2004 •