Page 21 of 136 results (0.012 seconds)

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program. Vulnerabilidad de ruta de búsqueda no confiable en el comando mkvg en IBM AIX 5.2 y 5.3 permite a usuarios locales escalar privilegios modificando la ruta para apuntar a programas (1) chdev, (2) mkboot, (3) varyonvg, o (4) varyoffvg maliciosos. • ftp://aix.software.ibm.com/aix/efixes/security/README http://secunia.com/advisories/21620 http://secunia.com/advisories/22106 http://securitytracker.com/id?1016920 http://www-1.ibm.com/support/docview.wss?uid=isg1IY88699 http://www-1.ibm.com/support/docview.wss?uid=isg1IY88722 http://www-1.ibm.com/support/docview.wss?uid=isg1IY88737 http://www.securityfocus.com/bid/19708 http://www.securityfocus.com/bid/20197 http://www.vupen.com/english/advisories/2006/3389 http:/&#x •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 1

Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors. Vulnerabilidad no especificada en setlocale en IBM AIX 5.1.0 hasta 5.3.0 permite a usuarios locales escalar privilegios a través de vectores no especificados. • https://www.exploit-db.com/exploits/4612 ftp://aix.software.ibm.com/aix/efixes/security/README http://secunia.com/advisories/21541 http://securitytracker.com/id?1016712 http://www-1.ibm.com/support/search.wss?rs=0&q=IY88183&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY88512&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY88528&apar=only http://www.osvdb.org/27996 http://www.securityfocus.com/bid/19578 http://www.vupen.com •

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands via unknown vectors involving lsmcode and possibly other commands. • http://secunia.com/advisories/20325 http://securitytracker.com/id?1016166 http://www-1.ibm.com/support/search.wss?rs=0&q=IY85517&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY85518&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY88524&apar=only http://www.securityfocus.com/bid/18114 http://www.vupen.com/english/advisories/2006/2007 •

CVSS: 3.3EPSS: 0%CPEs: 13EXPL: 0

rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files. • http://secunia.com/advisories/19656 http://securitytracker.com/id?1015952 http://www-1.ibm.com/support/docview.wss?uid=isg1IY82357 http://www.nsfocus.com/english/homepage/research/0603.htm http://www.osvdb.org/24706 http://www.securityfocus.com/archive/1/431846/100/0/threaded http://www.securityfocus.com/archive/1/431848/100/0/threaded http://www.securityfocus.com/bid/17576 http://www.vupen.com/english/advisories/2006/1389 https://exchange.xforce.ibmcloud.com/vulnerabilities • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

Unspecified vulnerability in mklvcopy in BOS.RTE.LVM in IBM AIX 5.3 allows local users to execute arbitrary commands when mklvcopy calls external commands, possibly due to an untrusted search path vulnerability. • http://attrition.org/pipermail/vim/2006-March/000641.html http://secunia.com/advisories/19235 http://securitytracker.com/id?1015786 http://www-1.ibm.com/support/docview.wss?uid=isg1IY82739 http://www.nsfocus.com/english/homepage/research/0602.htm http://www.osvdb.org/23921 http://www.securityfocus.com/bid/17115 http://www.vupen.com/english/advisories/2006/0957 https://exchange.xforce.ibmcloud.com/vulnerabilities/25299 https://exchange.xforce.ibmcloud.com/vulnerabilities/25849 •