CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4217
https://notcve.org/view.php?id=CVE-2007-4217
Stack-based buffer overflow in the domacro function in ftp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long parameter to a macro, as demonstrated by executing a macro via the '$' command. Desbordamiento de búfer basado en pila en la función domacro del ftp de IBM AIX 5.2 y 5.3 permite a usuarios locales obtener privilegios mediante un parámetro largo en una macro, como se demuestra ejecutando una macro mediante el comando '$'. • ftp://aix.software.ibm.com/aix/efixes/security/ftp_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=616 http://secunia.com/advisories/27437 http://securitytracker.com/id?1018871 http://www.ibm.com/support/docview.wss?uid=isg1IZ05487 http://www.ibm.com/support/docview.wss?uid=isg1IZ05488 http://www.securityfocus.com/bid/26260 http://www.vupen.com/english/advisories/2007/3669 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4513
https://notcve.org/view.php?id=CVE-2007-4513
Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv. Múltiples desbordamientos de búfer basados en pila en IBM AIX 5.2 y 5.3 permiten a usuarios locales obtener privilegios mediante un argumento largo en la opción "-p" en lqueryvg ó (2) la opción "-V" en lquerypv. • ftp://aix.software.ibm.com/aix/efixes/security/lquerypv_ifix.tar ftp://aix.software.ibm.com/aix/efixes/security/lqueryvg_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=614 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=615 http://secunia.com/advisories/27437 http://securitytracker.com/id?1018871 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ05129 http://www-1.ibm.com/support/docview.wss? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4799
https://notcve.org/view.php?id=CVE-2007-4799
The perfstat kernel extension in bos.perf.perfstat in AIX 5.3 does not verify privileges when processing a SET call, which allows local users to cause a denial of service (system hang or crash) via unspecified SET operations. La extensión del núcleo perfstat en bos.perf.perfstat en AIX 5.3 no valida los privilegios cuando se procesa una llamada a SET, lo cual permite a usuarios locales provocar denegación de servicio (cuelgue del sistema o caida) a través de operaciones no especificadas SET. • http://osvdb.org/40392 http://secunia.com/advisories/26715 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97309 http://www.securityfocus.com/bid/25554 http://www.vupen.com/english/advisories/2007/3059 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3850 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4793
https://notcve.org/view.php?id=CVE-2007-4793
Buffer overflow in xlplm in plm.server.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en xlplm en plm.server.rte en IBM AIX 5.2 y 5.3 permite a usuarios locales ganar privilegios a través de vectores no especificados. • http://osvdb.org/40398 http://secunia.com/advisories/26715 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00997 http://www.securityfocus.com/bid/25560 http://www.vupen.com/english/advisories/2007/3059 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3853 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3854 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4796
https://notcve.org/view.php?id=CVE-2007-4796
Buffer overflow in uucp in bos.net.uucp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en uucp en bos.net.uucp en IBM AIX 5.2 y 5.3 permite a usuarios locales ganar privilegios a través de vectores no especificados. • http://secunia.com/advisories/26715 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95852 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97215 http://www.securityfocus.com/bid/25563 http://www.vupen.com/english/advisories/2007/3059 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3851 http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3852 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •