CVE-2005-0263 – AIX 5.2 - 'netpmon' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-0263
Buffer overflow in netpmon on AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via a long -O argument. • https://www.exploit-db.com/exploits/1044 http://secunia.com/advisories/14237 http://www-1.ibm.com/support/search.wss?rs=0&q=IY67124&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY67136&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY67807&apar=only http://www.idefense.com/application/poi/display?id=197&type=vulnerabilities http://www.securityfocus.com/bid/12517 https://exchange.xforce.ibmcloud.com/vulnerabilities/19278 •
CVE-2005-0262 – AIX 5.2 - 'ipl_varyon' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-0262
Buffer overflow in ipl_varyon on AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via a long -d argument. • https://www.exploit-db.com/exploits/1045 http://secunia.com/advisories/14231 http://www-1.ibm.com/support/search.wss?rs=0&q=IY66933&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY67750&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY67812&apar=only http://www.idefense.com/application/poi/display?id=196&type=vulnerabilities http://www.securityfocus.com/bid/12516 https://exchange.xforce.ibmcloud.com/vulnerabilities/19282 •
CVE-2005-0250
https://notcve.org/view.php?id=CVE-2005-0250
Format string vulnerability in auditselect on IBM AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via format string specifiers in a command line argument. • http://secunia.com/advisories/14198 http://securitytracker.com/id?1013103 http://www-1.ibm.com/support/docview.wss?uid=isg1IY67472 http://www-1.ibm.com/support/docview.wss?uid=isg1IY67519 http://www-1.ibm.com/support/docview.wss?uid=isg1IY67802 http://www.idefense.com/application/poi/display? •
CVE-2004-2634
https://notcve.org/view.php?id=CVE-2004-2634
The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack on temporary files via unknown attack vectors. • http://secunia.com/advisories/11496 http://securitytracker.com/id?1009975 http://www-1.ibm.com/support/search.wss?rs=0&q=IY55789&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY55790&apar=only http://www.osvdb.org/5711 http://www.osvdb.org/5712 http://www.securityfocus.com/bid/10231 https://exchange.xforce.ibmcloud.com/vulnerabilities/16008 https://techsupport.services.ibm.com/server/pseries.subscriptionSvcs?mode=18&ID=279 •
CVE-2004-2697 – AIX 4.3.3/5.1 - Invscoutd Symbolic Link
https://notcve.org/view.php?id=CVE-2004-2697
The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). NOTE: this might be related to CVE-2006-5002. • https://www.exploit-db.com/exploits/23883 http://secunia.com/advisories/11200 http://www.osvdb.org/4582 http://www.securiteam.com/exploits/5CP0F0UDFG.html http://www.securityfocus.com/bid/9982 http://www.xfocus.org/exploits/200403/31.html https://exchange.xforce.ibmcloud.com/vulnerabilities/15620 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •