CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 1CVE-2009-2669 – IBM AIX 5.6/6.1 - '_LIB_INIT_DBG' Arbitrary File Overwrite via Libc Debug
https://notcve.org/view.php?id=CVE-2009-2669
A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE environment variables, which allows local users to gain privileges by leveraging a setuid-root program to create an arbitrary root-owned file with world-writable permissions, related to libC.a (aka the XL C++ runtime library) in AIX 5.3 and libc.a in AIX 6.1. Cierto componente de depuración en IBM AIX v5.3 y v6.1 no proporciona la gestión de los entornos (1) _LIB_INIT_DBG y (2) _LIB_INIT_DBG_FILE, que permite a usuarios locales obtener privilegios utilizando para ello un programa setuid-root para crear un archivo root-owned a su elección con permisos world-writable, relacionados con ibC.a (como la librería XL C++ runtime) en AIX v5.3 y libc.a en AIX v6.1. • https://www.exploit-db.com/exploits/9645 http://aix.software.ibm.com/aix/efixes/security/libC_advisory.asc http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=815 http://secunia.com/advisories/36156 http://www.ibm.com/support/docview.wss?uid=isg1IZ54090 http://www.ibm.com/support/docview.wss?uid=isg1IZ54091 http://www.ibm.com/support/docview.wss?uid=isg1IZ54593 http://www.ibm.com/support/docview.wss? • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 2CVE-2009-1786 – Kingsoft Webshield 1.1.0.62 - Cross-Site Scripting / Remote Command Execution
https://notcve.org/view.php?id=CVE-2009-1786
The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack on the log file associated with the MALLOCDEBUG environment variable. El subsistema malloc en libc en IBM AIX v5.3 y v6.1 permite a usuarios locales crear o sobrescribir ficheros de forma arbitraria a través de un ataque de enlace simbólico en el fichero log asociado con la variable de entorno MALLOCDEBUG. • https://www.exploit-db.com/exploits/33001 http://aix.software.ibm.com/aix/efixes/security/libc_advisory.asc http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=802 http://secunia.com/advisories/35146 http://securitytracker.com/id?1022261 http://www.ibm.com/support/docview.wss?uid=isg1IZ50121 http://www.ibm.com/support/docview.wss?uid=isg1IZ50129 http://www.ibm.com/support/docview.wss? • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1355
https://notcve.org/view.php?id=CVE-2009-1355
Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename. Desbordamiento de búfer basado en pila en muxatmd en IBM AIX v5.2, v5.3, y v6.1 permite a usuarios locales conseguir privilegios a través de un nombre largo de fichero. • http://aix.software.ibm.com/aix/efixes/security/muxatmd_advisory.asc http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=784 http://secunia.com/advisories/34662 http://www.ibm.com/support/docview.wss?uid=isg1IZ48495 http://www.ibm.com/support/docview.wss?uid=isg1IZ48496 http://www.ibm.com/support/docview.wss?uid=isg1IZ48499 http://www.ibm.com/support/docview.wss? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2009-0779
https://notcve.org/view.php?id=CVE-2009-0779
Buffer overflow in pppdial in IBM AIX 5.3 and 6.1 allows local users to gain privileges via a long "input string." Desbordamiento de búfer en pppdial en IBM AIX v5.3 y v6.1 permite a usuarios locales ganar privilegios a través de una "cadena de entrada" larga. • http://secunia.com/advisories/34005 http://securitytracker.com/id?1021741 http://www-01.ibm.com/support/docview.wss?uid=isg1IZ44199 http://www-01.ibm.com/support/docview.wss?uid=isg1IZ44220 http://www-01.ibm.com/support/docview.wss?uid=isg1IZ44332 http://www-01.ibm.com/support/docview.wss? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.9EPSS: 0%CPEs: 8EXPL: 1CVE-2009-0536
https://notcve.org/view.php?id=CVE-2009-0536
at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges. at en bos.rte.cron sobre IBM AIX v5.2.0, v5.3.0 a la v 5.3.9 y de la v6.1.0 a la 6.1.2, permite a usuarios locales leer ficheros de su elección a través de vectores sin especificar, relacionado con el fallo al quitar privilegios de root (administrador). • http://aix.software.ibm.com/aix/efixes/security/at_advisory.asc http://osvdb.org/51952 http://secunia.com/advisories/33915 http://www.ibm.com/support/docview.wss?uid=isg1IZ43452 http://www.ibm.com/support/docview.wss?uid=isg1IZ43453 http://www.ibm.com/support/docview.wss?uid=isg1IZ43454 http://www.ibm.com/support/docview.wss?uid=isg1IZ43455 http://www.ibm.com/support/docview.wss? • CWE-264: Permissions, Privileges, and Access Controls •