CVSS: 10.0EPSS: 85%CPEs: 12EXPL: 0CVE-2004-0368
https://notcve.org/view.php?id=CVE-2004-0368
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet. Vulnerabilidad de doble liberación de memora en dtlogin de CDE sobre Solaris, y posiblemente otros sistemas operativos, permite a atacantes remotos ejecutar código arbitrario mediante cierto paquete UDP. • ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0064.html http://lists.immunitysec.com/pipermail/dailydave/2004-March/000402.html http://secunia.com/advisories/11210 http://secunia.com/advisories/11214 http://secunia.com/advisories/11495 http://secunia.com/advisories/11614 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101478-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57539-1&se • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0CVE-2003-0257
https://notcve.org/view.php?id=CVE-2003-0257
Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges. Vulnerabilidad de cadena de formato en la capacídad de impresión de IBM AIX .3, 5.1 y 5.2 pemite a usuarios locales ganar privilegios de printq o de root • http://www-1.ibm.com/services/continuity/recover1.nsf/MSS/MSS-OAR-E01-2003.0660.1 https://exchange.xforce.ibmcloud.com/vulnerabilities/12000 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2003-1018
https://notcve.org/view.php?id=CVE-2003-1018
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors. Vulnerabilidad de cadena de formato en la orden enq en AIX 4.3, 5.1 Y 5.2 permite a usuarios locales con privilegios de grupo rint ganar privilegios mediante vectores de ataque desconocidos. • http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-20 http://www.securityfocus.com/bid/9254 https://exchange.xforce.ibmcloud.com/vulnerabilities/14037 •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2003-0170
https://notcve.org/view.php?id=CVE-2003-0170
Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors. Vulnerabilidad desconocida en ftpd en IBM AIX 5.2, cuando se configura para utilizar autenticación Kerberos 5, permite a atacantes remotos ganar privilegios mediante vectores de ataque desconocidos. • http://www-1.ibm.com/services/continuity/recover1.nsf/MSS/MSS-OAR-E01-2003.0469.1 http://www-1.ibm.com/support/docview.wss?uid=isg1IY42424 http://www.osvdb.org/4878 http://www.securityfocus.com/bid/7346 https://exchange.xforce.ibmcloud.com/vulnerabilities/11823 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2003-0119
https://notcve.org/view.php?id=CVE-2003-0119
The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remote attackers to directly connect to the daemon and conduct unauthorized activities. El demonio secldapclntd en AIX 4.3, 5.1 y 5.2usa un socket de Internet cuando se comunica con el loadmodule, lo que permite que atacantes remotos se conecten directamente al demonio y realicen actividades no autorizadas. • http://secunia.com/advisories/8221 http://www-1.ibm.com/services/continuity/recover1.nsf/4699c03b46f2d4f68525678c006d45ae/85256a3400529a8685256cde0008ddde?OpenDocument http://www.kb.cert.org/vuls/id/624713 http://www.securityfocus.com/bid/7264 •