CVE-2007-5805
https://notcve.org/view.php?id=CVE-2007-5805
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create an arbitrary file, and enable world writability of this file, via a symlink attack involving use of the file's name as the argument. NOTE: this issue is due to an incomplete fix for CVE-2007-5804. cfgcon de IBM AIX 5.2 and 5.3 no valida apropiadamente el argumento de la opción "-p" en swcons, lo cual permite a usuarios locales en el grupo del sistema crear un fichero de su elección, y habilitar la escritura de todos en este fichero, a través de un enlace simbólico involucrando el uso del nombre del fichero como argumento. NOTA: este asunto se debe a un parche incompleto para CVE-2007-5804. • ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611 http://secunia.com/advisories/27437 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061 http://www.securityfocus.com/bid/26258 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405 https://exchange.xforce.ibmcloud. • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2007-5804
https://notcve.org/view.php?id=CVE-2007-5804
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create or overwrite an arbitrary file, and enable world writability of this file, by using the file's name as the argument. cfgcon en IBM AIX 5.2 y 5.3 no valida adecuadamente el argumento de la opción "-p" a swcons, lo cual permite a usuarios locales del grupo sysmtem crear o sobrescribir ficheros de su elección, y habilitar el fichero para escritura para todo el mundo, utilizando el nombre de fichero como argumento. • ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611 http://secunia.com/advisories/27437 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061 http://www.securityfocus.com/bid/26258 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405 https://exchange.xforce.ibmcloud. •
CVE-2007-4623
https://notcve.org/view.php?id=CVE-2007-4623
Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command. Desbordamiento de búfer basado en pila en la función sendrmt en bellmail de IBM AIX 5.2 y 5.3 permite a usuarios locales ejecutar código de su elección a través de un parámetro largo en el comando m. • ftp://aix.software.ibm.com/aix/efixes/security/bellmail_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=617 http://secunia.com/advisories/27437 http://securitytracker.com/id?1018871 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ05065 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ05066 http://www.securityfocus.com/bid/26257 http://www.vupen.com/english/advisories/2007/3669 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-4217
https://notcve.org/view.php?id=CVE-2007-4217
Stack-based buffer overflow in the domacro function in ftp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long parameter to a macro, as demonstrated by executing a macro via the '$' command. Desbordamiento de búfer basado en pila en la función domacro del ftp de IBM AIX 5.2 y 5.3 permite a usuarios locales obtener privilegios mediante un parámetro largo en una macro, como se demuestra ejecutando una macro mediante el comando '$'. • ftp://aix.software.ibm.com/aix/efixes/security/ftp_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=616 http://secunia.com/advisories/27437 http://securitytracker.com/id?1018871 http://www.ibm.com/support/docview.wss?uid=isg1IZ05487 http://www.ibm.com/support/docview.wss?uid=isg1IZ05488 http://www.securityfocus.com/bid/26260 http://www.vupen.com/english/advisories/2007/3669 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-4513
https://notcve.org/view.php?id=CVE-2007-4513
Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv. Múltiples desbordamientos de búfer basados en pila en IBM AIX 5.2 y 5.3 permiten a usuarios locales obtener privilegios mediante un argumento largo en la opción "-p" en lqueryvg ó (2) la opción "-V" en lquerypv. • ftp://aix.software.ibm.com/aix/efixes/security/lquerypv_ifix.tar ftp://aix.software.ibm.com/aix/efixes/security/lqueryvg_ifix.tar http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=614 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=615 http://secunia.com/advisories/27437 http://securitytracker.com/id?1018871 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ05129 http://www-1.ibm.com/support/docview.wss? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •