CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2011-1384
https://notcve.org/view.php?id=CVE-2011-1384
04 Jan 2012 — The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file. El programa (1) bin/invscoutClient_VPD_Survey y (2) sbin/invscout_lsvpd en invscout.rte antes de v2.2.0.19 en IBM AIX v7.1, v6.1, v5.3, y anteriores, permite a usuarios locales borrar archivos de su elección o lanzar la... • http://aix.software.ibm.com/aix/efixes/security/invscout_advisory2.asc • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 10.0EPSS: 79%CPEs: 1EXPL: 7CVE-2010-3187 – AIX5l with FTP-Server - Hash Disclosure
https://notcve.org/view.php?id=CVE-2010-3187
30 Aug 2010 — Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command. Desbordamiento de buffer en ftpd de IBM AIX v5.3 y versiones anteriores. Permite a atacantes remotos ejecutar código de su elección a través de un comando NLST extenso. • https://www.exploit-db.com/exploits/14409 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 26%CPEs: 45EXPL: 1CVE-2010-1039 – rpc.pcnfsd - Remote Format String
https://notcve.org/view.php?id=CVE-2010-1039
20 May 2010 — Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name. Vulnerabilidad de cadena de formato en la función _msgout en rpc.pcnfsd en AIX de IBM versiones 6.1, 5.3 y anteriores; VIOS de IBM versiones 2.1, 1.5 ... • https://www.exploit-db.com/exploits/14407 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2008-0509
https://notcve.org/view.php?id=CVE-2008-0509
31 Jan 2008 — Multiple buffer overflows in IBM AIX 4.3 allow remote attackers to cause a denial of service (crash) or possibly gain privileges via a long argument to (1) piox25, related to piox25.c; or (2) piox25remote, related to piox25remote.sh. Múltiples desbordamientos de búfer en IBM AIX 4.3. Permiten a atacantes remotos provocar una denegación de servicio (caída) o posiblemente obtener privilegios a través de un argumento largo a (1) piox25, relacionado con piox25.c; o (2) piox25remote, relacionado con piox25remote... • http://secunia.com/advisories/28600 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4228
https://notcve.org/view.php?id=CVE-2007-4228
08 Aug 2007 — rmpvc on IBM AIX 4.3 allows local users to cause a denial of service (system crash) via long port logical name (-l) argument. rmpvc de IBM AIX 4.3 permite a usuarios locales provocar una denegación de servicio (caída de sistema) mediante un argumento nombre de puerto lógico (-1) largo. • http://osvdb.org/36788 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2003-0257
https://notcve.org/view.php?id=CVE-2003-0257
16 Mar 2004 — Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges. Vulnerabilidad de cadena de formato en la capacídad de impresión de IBM AIX .3, 5.1 y 5.2 pemite a usuarios locales ganar privilegios de printq o de root • http://www-1.ibm.com/services/continuity/recover1.nsf/MSS/MSS-OAR-E01-2003.0660.1 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2003-0697
https://notcve.org/view.php?id=CVE-2003-0697
23 Sep 2003 — Format string vulnerability in lpd in the bos.rte.printers fileset for AIX 4.3 through 5.2, with debug enabled, allows local users to cause a denial of service (crash) or gain root privileges. Vulnerabilidad de cadena de formato en lpd en el conjunto de ficheros bos.rte.printers de AIX 4.3 a 5.2, con depuración activada, permite a usuarios locales causar una denegación de servicio (caída) o ganar privilegios de root. • http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2003.1605.1 •
CVSS: 10.0EPSS: 75%CPEs: 163EXPL: 1CVE-2003-0694 – Sendmail SMTP Address prescan Memory Corruption
https://notcve.org/view.php?id=CVE-2003-0694
18 Sep 2003 — The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. La función de prescan en Sendmail 8.12.9 permite a atacantes remotos ejecutar código arbitrario mediante ataques de desbordamiento de búfer, como se demostró usando la función parseaddr en parseaddr.c. • https://packetstorm.news/files/id/180502 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2003-0285
https://notcve.org/view.php?id=CVE-2003-0285
14 May 2003 — IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail. IBM AIX 5.2 y anteriores, distribuyen Sendmail con un fichero de configuración (sendmail.cf) con varias caracteristicas habilitadas, lo que permite a Sendmail ser utilizado como emisor de correo para spam. Las caracteristicas hab... • http://marc.info/?l=bugtraq&m=105284689228961&w=2 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1548
https://notcve.org/view.php?id=CVE-2002-1548
31 Mar 2003 — Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called." • http://archives.neohapsis.com/archives/aix/2002-q4/0002.html •