CVSS: 7.2EPSS: 0%CPEs: 28EXPL: 1CVE-1999-0691 – DIGITAL UNIX 4.0 d/e/f / AIX 4.3.2 / CDE 2.1 / IRIX 6.5.14 / Solaris 7.0 - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0691
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. • https://www.exploit-db.com/exploits/19497 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 http://www.securityfocus.com/bid/635 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3078 •
CVSS: 7.5EPSS: 1%CPEs: 33EXPL: 0CVE-1999-0687
https://notcve.org/view.php?id=CVE-1999-0687
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 http://www.ciac.org/ciac/bulletins/k-001.shtml http://www.securityfocus.com/bid/637 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103 •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0694
https://notcve.org/view.php?id=CVE-1999-0694
Denial of service in AIX ptrace system call allows local users to crash the system. • http://www.ciac.org/ciac/bulletins/j-055.shtml •
CVSS: 4.6EPSS: 0%CPEs: 11EXPL: 0CVE-1999-1079
https://notcve.org/view.php?id=CVE-1999-1079
Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. • http://marc.info/?l=bugtraq&m=92601792420088&w=2 http://marc.info/?l=bugtraq&m=93587956513233&w=2 http://www-1.ibm.com/servlet/support/manager?rs=0&rt=0&org=apars&doc=08E0B1A1B85472A1852567C90031BB36 http://www.securityfocus.com/bid/439 •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 2CVE-1999-1405 – IBM AIX 4.2.1 - 'snap' Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-1999-1405
snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. • https://www.exploit-db.com/exploits/19300 http://marc.info/?l=bugtraq&m=91936783009385&w=2 http://marc.info/?l=bugtraq&m=91954824614013&w=2 http://www.securityfocus.com/bid/375 •