Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Aix
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 385 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 1998-02-25 | CVE-1999-1486 | sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack. | Aix | N/A | ||
| 1998-06-11 | CVE-1999-1480 | (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | Aix | N/A | ||
| 1997-03-05 | CVE-1999-1408 | Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost. | Hp\-Ux, Aix | N/A | ||
| 1999-02-17 | CVE-1999-1405 | snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. | Aix | N/A | ||
| 1997-07-21 | CVE-1999-1208 | Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long command line argument. | Aix | N/A | ||
| 1992-03-19 | CVE-1999-1121 | The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges. | Aix | N/A | ||
| 1992-04-27 | CVE-1999-1119 | FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary commands. | Aix | N/A | ||
| 1999-12-31 | CVE-1999-1117 | lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter. | Aix | N/A | ||
| 1999-05-06 | CVE-1999-1079 | Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. | Aix | N/A | ||
| 1998-03-18 | CVE-1999-1075 | inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | Aix | N/A |