CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2010-3405
https://notcve.org/view.php?id=CVE-2010-3405
16 Sep 2010 — Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1, 5.3, and earlier and VIOS 2.1, 1.5, and earlier allows local users to leverage system group membership and gain privileges via unspecified vectors. Desbordamiento de búfer en sa_snap en el conjunto de archivos bos.esagent en IBM AIX v6.1, v5.3, y anteriores y VIOS v2.1, v1.5 y anteriores permite a usuarios locales aprovecharse de la pertenencia al grupo sistema y obtener privilegios a través de vectores no especificados. • http://aix.software.ibm.com/aix/efixes/security/sa_snap_advisory.asc • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 26%CPEs: 45EXPL: 1CVE-2010-1039 – rpc.pcnfsd - Remote Format String
https://notcve.org/view.php?id=CVE-2010-1039
20 May 2010 — Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name. Vulnerabilidad de cadena de formato en la función _msgout en rpc.pcnfsd en AIX de IBM versiones 6.1, 5.3 y anteriores; VIOS de IBM versiones 2.1, 1.5 ... • https://www.exploit-db.com/exploits/14407 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2010-1124
https://notcve.org/view.php?id=CVE-2010-1124
26 Mar 2010 — bos.rte.libc 5.3.9.4 on IBM AIX 5.3 does not properly support reading a certain address field after a successful getaddrinfo function call, which allows context-dependent attackers to cause a denial of service (application crash) via unspecified vectors, as demonstrated by IBM DB2 crashes on "systems with databases cataloged with alternate servers using IP addresses." bos.rte.libc v5.3.9.4 en IBM AIX v5.3 no soporta de forma adecuada la lectura de ciertos campos de dirección después de una llamada incirrect... • http://www-01.ibm.com/support/docview.wss?uid=isg1IZ66710 •
CVSS: 10.0EPSS: 70%CPEs: 31EXPL: 2CVE-2009-3699 – AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 - Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-3699
15 Oct 2009 — Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd. Desbordamiento de búfer basado en pila en libcsa.a (también conocido como biblioteca del demonio calendario (calendar daemon library)) en IBM AIX v5.x hasta v5.3.10 y v6.x hasta v6.1.3, y VIOS v2.1 y versiones anteriores, permite a atac... • https://www.exploit-db.com/exploits/16929 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0CVE-2009-3516
https://notcve.org/view.php?id=CVE-2009-3516
01 Oct 2009 — gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors. gssd en IBM AIX v5.3.x hasta v5.3.9 y v6.1.0 hasta v6.1.2 no maneja adecuadamente las credenciales de caché NFSv4 Kerberos, lo que permite a atacantes locales eludir las restricciones de acceso para el recurso compartido "Kerberized NFSv4" a través de vectores no especific... • http://aix.software.ibm.com/aix/efixes/security/nfs4_advisory.asc • CWE-255: Credentials Management Errors •
CVSS: 10.0EPSS: 2%CPEs: 7EXPL: 0CVE-2009-3517
https://notcve.org/view.php?id=CVE-2009-3517
01 Oct 2009 — nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote attackers to bypass intended access restrictions for NFSv4 shares via unspecified vectors. nfs.ext en IBM AIX v5.3.x hasta v5.3.9 y v6.1.0 hasta v6.1.2 no usa apropiadamente la configuración nfs_portmon, lo que permite a atacantes remotos eludir las restricciones de acceso para NFSv4 compartidos a través de vectores no especificados. • http://aix.software.ibm.com/aix/efixes/security/nfs4_advisory.asc •
CVSS: 9.8EPSS: 75%CPEs: 16EXPL: 2CVE-2009-2727 – ToolTalk - rpc.ttdbserverd _tt_internal_realpath Buffer Overflow (AIX)
https://notcve.org/view.php?id=CVE-2009-2727
10 Aug 2009 — Stack-based buffer overflow in the _tt_internal_realpath function in the ToolTalk library (libtt.a) in IBM AIX 5.2.0, 5.3.0, 5.3.7 through 5.3.10, and 6.1.0 through 6.1.3, when the rpc.ttdbserver daemon is enabled in /etc/inetd.conf, allows remote attackers to execute arbitrary code via a long XDR-encoded ASCII string to remote procedure 15. Desbordamiento de búfer basado en pila en la función _tt_internal_realpath en la biblioteca ToolTalk (libtt.a) en IBM AIX v5.2.0, v5.3.0, v5.3.7 a la v5.3.10, y v6.1.0 ... • https://www.exploit-db.com/exploits/16930 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2009-2669 – IBM AIX 5.6/6.1 - '_LIB_INIT_DBG' Arbitrary File Overwrite via Libc Debug
https://notcve.org/view.php?id=CVE-2009-2669
05 Aug 2009 — A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE environment variables, which allows local users to gain privileges by leveraging a setuid-root program to create an arbitrary root-owned file with world-writable permissions, related to libC.a (aka the XL C++ runtime library) in AIX 5.3 and libc.a in AIX 6.1. Cierto componente de depuración en IBM AIX v5.3 y v6.1 no proporciona la gestión de los entornos (1) _LIB_INIT_DBG y (2) _LIB... • https://www.exploit-db.com/exploits/9645 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 2CVE-2009-1786 – Kingsoft Webshield 1.1.0.62 - Cross-Site Scripting / Remote Command Execution
https://notcve.org/view.php?id=CVE-2009-1786
26 May 2009 — The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack on the log file associated with the MALLOCDEBUG environment variable. El subsistema malloc en libc en IBM AIX v5.3 y v6.1 permite a usuarios locales crear o sobrescribir ficheros de forma arbitraria a través de un ataque de enlace simbólico en el fichero log asociado con la variable de entorno MALLOCDEBUG. • https://www.exploit-db.com/exploits/33001 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1355
https://notcve.org/view.php?id=CVE-2009-1355
21 Apr 2009 — Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename. Desbordamiento de búfer basado en pila en muxatmd en IBM AIX v5.2, v5.3, y v6.1 permite a usuarios locales conseguir privilegios a través de un nombre largo de fichero. • http://aix.software.ibm.com/aix/efixes/security/muxatmd_advisory.asc • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •