CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4354
https://notcve.org/view.php?id=CVE-2007-4354
Buffer overflow in fileplace in bos.perf.tools in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en fileplace en bos.perf.tools de IBM AIX 5.2 y 5.3 permite a usuarios locales obtener privilegios a través de vectores no especificados. • ftp://aix.software.ibm.com/aix/efixes/security/README http://secunia.com/advisories/26420 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00149 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00154 http://www.securityfocus.com/bid/25271 http://www.securitytracker.com/id?1018550 http://www.vupen.com/english/advisories/2007/2860 http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200708%2FSECURITY%2F20070810%2Fdatafile101707 https://exchan •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4236
https://notcve.org/view.php?id=CVE-2007-4236
Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privileges. Desbordamiento de búfer en el lpd del bos.rte.printers en el AIX 5.2 y 5.3 permite a usuarios locales con privilegios de grupo printq obtener privilegios de super administrador (root). • http://secunia.com/advisories/26219 http://securitytracker.com/id?1018467 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98339 http://www-1.ibm.com/support/docview.wss?uid=isg1IY98560 http://www.vupen.com/english/advisories/2007/2678 •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4237
https://notcve.org/view.php?id=CVE-2007-4237
Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges. Desbordamiento de búfer en el atm subset en el arp del devices.common.IBM.atm.rte en el AIX 5.2 y 5.3 permite a usuarios locales obtener privilegios de super administrador (root). • http://osvdb.org/36783 http://secunia.com/advisories/26219 http://securitytracker.com/id?1018463 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00510 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00521 http://www.vupen.com/english/advisories/2007/2678 •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4238
https://notcve.org/view.php?id=CVE-2007-4238
AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit. AIX 5.2 y 5.3 instala pioinit como usuario y grupo bin, lo cual permite a usuario locales con privilegios de bin o posiblemente de printq obtener las credenciales de root modificando el pioinit. • http://osvdb.org/36782 http://secunia.com/advisories/26219 http://securitytracker.com/id?1018468 http://www-1.ibm.com/support/docview.wss?uid=isg1IY79785 http://www-1.ibm.com/support/docview.wss?uid=isg1IY79786 http://www.vupen.com/english/advisories/2007/2678 •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 1CVE-2007-4004 – IBM AIX 5.3 SP6 - FTP 'gets()' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-4004
Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the client is setuid root on AIX, so this issue crosses privilege boundaries. Un desbordamiento de búfer en el cliente ftp en IBM AIX versiones 5.3 SP6 y 5.2.0, permite a usuarios locales ejecutar código arbitrario por medio de vectores no especificados que desencadenan el desbordamiento en una llamada de la función gets. NOTA: el cliente es root del setuid en AIX, por lo que este problema cruza los límites de privilegios. • https://www.exploit-db.com/exploits/4233 ftp://aix.software.ibm.com/aix/efixes/security/README http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=571 http://secunia.com/advisories/26219 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01812 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01813 http://www.securityfocus.com/bid/25077 http://www.securitytracker.com/id?1018465 http://www.vupen.com/english/advisories/2007/2675 https://exchange.xforce.ibmcloud& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •