CVE-2014-3977 – IBM AIX 6.1.8 - 'libodm' Arbitrary File Write
https://notcve.org/view.php?id=CVE-2014-3977
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179. libodm.a en IBM AIX 6.1 y 7.1, y VIOS 2.2.x, permite a usuarios locales sobrescribir archivos arbitrarios a través de un ataque de enlace simbólico sobre un archivo temporal. NOTA: esta vulnerabilidad existe debido a una solución incompleta para CVE-2012-2179. IBM AIX versions 6.1.8 and later suffer from a local privilege escalation vulnerability in libodm due to an arbitrary file write. • https://www.exploit-db.com/exploits/33725 http://aix.software.ibm.com/aix/efixes/security/libodm_advisory.asc http://packetstormsecurity.com/files/127067/IBM-AIX-6.1.8-Privilege-Escalation.html http://www.exploit-db.com/exploits/33725 http://www.ibm.com/support/docview.wss?uid=isg1IV60299 http://www.ibm.com/support/docview.wss?uid=isg1IV60303 http://www.ibm.com/support/docview.wss?uid=isg1IV60311 http://www.ibm.com/support/docview.wss?uid=isg1IV60312 http://www.ibm.com/supp • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2014-0930
https://notcve.org/view.php?id=CVE-2014-0930
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation. La llamada de sistema ptrace en IBM AIX 5.3, 6.1, y 7.1 y VIOS 2.2.x, permite a usuarios locales causar una denegación de servicio (caída de sistema) o obtener información sensible de la memoria del kernel a través de una operación PT_LDINFO manipulada. • http://aix.software.ibm.com/aix/efixes/security/ptrace_advisory.asc http://archives.neohapsis.com/archives/bugtraq/2014-05/0031.html http://www.ibm.com/support/docview.wss?uid=isg1IV58766 http://www.ibm.com/support/docview.wss?uid=isg1IV58840 http://www.ibm.com/support/docview.wss?uid=isg1IV58861 http://www.ibm.com/support/docview.wss?uid=isg1IV58888 http://www.ibm.com/support/docview.wss? •
CVE-2013-5419
https://notcve.org/view.php?id=CVE-2013-5419
Multiple buffer overflows in (1) mkque and (2) mkquedev in bos.rte.printers in IBM AIX 6.1 and 7.1 allow local users to gain privileges by leveraging printq group membership. Múltiples desbordamientos de buffer en (1) mkque y (2) mkquedev en bos.rte.printers de IBM AIX 6.1 y 7.1 permite a usuarios locales obtener privilegios aprovechando la pertenencia al grupo printq. • http://aix.software.ibm.com/aix/efixes/security/cmdque_advisory.asc http://www.ibm.com/support/docview.wss?uid=isg1IV47427 http://www.ibm.com/support/docview.wss?uid=isg1IV47428 http://www.ibm.com/support/docview.wss?uid=isg1IV47429 http://www.ibm.com/support/docview.wss?uid=isg1IV47430 https://exchange.xforce.ibmcloud.com/vulnerabilities/87481 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18775 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2013-4011 – IBM AIX 6.1/7.1 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2013-4011
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat. Múltiples vulnerabilidades no especificadas en el InfiniBand subsystem en IBM AIX 6.1 y 7.1, y VIOS v2.2.2.2-FP-26 SP-02, permite a usuarios locales conseguir privilegios a través de vectores relacionados (1) arp.ib o (2) ibstat. • https://www.exploit-db.com/exploits/28507 https://www.exploit-db.com/exploits/32700 http://aix.software.ibm.com/aix/efixes/security/infiniband_advisory.asc http://osvdb.org/95419 http://osvdb.org/95420 http://secunia.com/advisories/54215 http://www.ibm.com/support/docview.wss?uid=isg1IV43561 http://www.ibm.com/support/docview.wss?uid=isg1IV43562 http://www.ibm.com/support/docview.wss?uid=isg1IV43580 http://www.ibm.com/support/docview.wss?uid=isg1IV43582 http://www •
CVE-2013-3005
https://notcve.org/view.php?id=CVE-2013-3005
The TFTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, when RBAC is enabled, allows remote authenticated users to bypass intended file-ownership restrictions, and read or overwrite arbitrary files, via unspecified vectors. El cliente TFTP en IBM AIX v6.1 y v7.1, y VIOS v2.2.2.2-FP-26 SP-02, cuando RBAC está activada, permite a los usuarios remotos autenticados evitar los permisos de propiedad de archivos, y leer o sobrescribir archivos de su elección, a través de vectores no especificados. • http://aix.software.ibm.com/aix/efixes/security/tftp_advisory.asc http://www.ibm.com/support/docview.wss?uid=isg1IV40221 http://www.ibm.com/support/docview.wss?uid=isg1IV42700 http://www.ibm.com/support/docview.wss?uid=isg1IV42932 http://www.ibm.com/support/docview.wss?uid=isg1IV42933 http://www.ibm.com/support/docview.wss? • CWE-264: Permissions, Privileges, and Access Controls •