threat
engine
.sh
Back
·
··:··
Home
/
Product
/
ibm aix
Product
ibm aix
393 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-36251
all versions
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbi
9.6
CRITICAL
CVE-2025-36250
all versions
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could allow a remote at
10.0
CRITICAL
CVE-2025-36236
all versions
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could allow a remote at
8.2
HIGH
CVE-2025-36096
all versions
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is suscep
9.0
CRITICAL
CVE-2025-36244
all versions
IBM AIX 7.2, 7.3, IBM VIOS 3.1, and 4.1, when configured to use Kerberos network authentication, could allow a local user to write
7.4
HIGH
CVE-2025-33112
all versions
IBM AIX 7.3 and IBM VIOS 4.1.1 Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute a
8.4
HIGH
CVE-2024-56347
all versions
IBM AIX 7.2 and 7.3 nimsh service SSL/TLS protection mechanisms could allow a remote attacker to execute arbitrary commands due to
9.6
CRITICAL
CVE-2024-56346
all versions
IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process
10.0
CRITICAL
CVE-2024-52906
all versions
IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel ex
5.5
MEDIUM
CVE-2024-47102
all versions
IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kerne
5.5
MEDIUM
CVE-2024-47115
all versions
IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutra
7.8
HIGH
CVE-2024-27260
all versions
IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout comman
8.4
HIGH
CVE-2024-27273
all versions
IBM AIX's Unix domain (AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1) datagram socket implementation could potentially expose applications
8.1
HIGH
CVE-2024-25021
all versions
IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrar
8.4
HIGH
CVE-2023-45171
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to cause a denial
6.2
MEDIUM
CVE-2023-45169
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the pmsvcs kernel extension t
6.2
MEDIUM
CVE-2023-45175
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension t
6.2
MEDIUM
CVE-2023-45173
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the NFS kernel extension to c
6.2
MEDIUM
CVE-2023-45165
all versions
IBM AIX 7.2 and 7.3 could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of
6.2
MEDIUM
CVE-2023-45172
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in AIX windows to cause a denial
6.2
MEDIUM
CVE-2023-45174
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate p
8.4
HIGH
CVE-2023-45170
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate
8.4
HIGH
CVE-2023-45166
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obta
8.4
HIGH
CVE-2023-45168
all versions
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execu
8.4
HIGH
CVE-2023-45167
all versions
IBM AIX's 7.3 Python implementation could allow a non-privileged local user to exploit a vulnerability to cause a denial of servic
6.2
MEDIUM
CVE-2023-40371
all versions
IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allow
6.2
MEDIUM
CVE-2023-28528
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to
8.4
HIGH
CVE-2023-26286
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services
8.4
HIGH
CVE-2022-47990
all versions
IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer o
6.2
MEDIUM
CVE-2022-43849
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel exte
6.2
MEDIUM
CVE-2022-43848
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel
6.2
MEDIUM
CVE-2022-41290
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file comm
8.4
HIGH
CVE-2022-39164
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a
6.2
MEDIUM
CVE-2022-43381
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cau
6.2
MEDIUM
CVE-2022-43380
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel exten
6.2
MEDIUM
CVE-2022-40233
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel ex
6.2
MEDIUM
CVE-2022-39165
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of
6.2
MEDIUM
CVE-2022-43382
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon
6.2
MEDIUM
CVE-2022-36768
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to
7.8
HIGH
CVE-2022-34356
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain
7.8
HIGH
CVE-2022-22444
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user to exploit a vulnerability in the lpd daemon to cause a denial of ser
5.5
MEDIUM
CVE-2022-22351
>= 7.1.5.0 and <= 7.1.5.37
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged trusted host user to exploit a vulnerability in the nimsh daemon
8.6
HIGH
CVE-2021-38989
>= 7.1.5.0 and <= 7.1.5.36
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause
5.5
MEDIUM
CVE-2021-38988
>= 7.1.5.0 and <= 7.1.5.32
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause
5.5
MEDIUM
CVE-2022-22350
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of
5.5
MEDIUM
CVE-2021-38996
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause
5.5
MEDIUM
CVE-2021-38955
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a denial of service due to a file c
4.4
MEDIUM
CVE-2021-38993
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the smbcd daemon to caus
5.5
MEDIUM
CVE-2021-38995
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause
5.5
MEDIUM
CVE-2021-38994
all versions
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause
5.5
MEDIUM
CVE-2021-38991
all versions
IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which
7.8
HIGH
CVE-2021-38990
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could
7.8
HIGH
CVE-2021-29861
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in EFS to expose sensitive infor
6.2
MEDIUM
CVE-2021-29860
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose
6.2
MEDIUM
CVE-2021-29862
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a den
5.5
MEDIUM
CVE-2021-29801
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privi
7.8
HIGH
CVE-2021-29727
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the AIX kernel to cause a denial of service.
5.5
MEDIUM
CVE-2021-29741
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IB
7.8
HIGH
CVE-2021-29693
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user that is in the with elevated group privileges to cause a denial of service
4.4
MEDIUM
CVE-2021-29706
all versions
IBM AIX 7.1 could allow a non-privileged local user to exploit a vulnerability in the trace facility to expose sensitive informati
7.1
HIGH
CVE-2020-4887
all versions
IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitr
5.5
MEDIUM
CVE-2020-4829
all versions
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges
7.8
HIGH
CVE-2020-4788
all versions
IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L
4.7
MEDIUM
CVE-2018-1655
all versions
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Forc
4.0
MEDIUM
CVE-2018-1383
all versions
A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on o
9.1
CRITICAL
CVE-2017-1692
all versions
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root
7.8
HIGH
CVE-2017-1541
all versions
A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep packages prevented the java.security, java.policy and javaws
7.3
HIGH
CVE-2016-8972
all versions
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail c
7.8
HIGH
CVE-2016-8944
all versions
IBM AIX 7.1 and 7.2 allows a local user to open a file with a specially crafted argument that would crash the system. IBM APARs: I
5.5
MEDIUM
CVE-2016-6079
all versions
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root
7.8
HIGH
CVE-2017-1093
all versions
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to exploit a vulnerability in the bellmail binary to gain root privileges.
7.8
HIGH
CVE-2016-3053
all versions
IBM AIX contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges.
7.8
HIGH
CVE-2016-6038
all versions
Directory traversal vulnerability in Eclipse Help in IBM Tivoli Lightweight Infrastructure (aka LWI), as used in AIX 5.3, 6.1, and
6.5
MEDIUM
CVE-2016-0281
all versions
The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, when the jumbo_frames feature is not enabled, allows remote
3.7
LOW
CVE-2016-0266
all versions
IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middl
3.7
LOW
CVE-2015-4948
all versions
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges v
CVE-2014-8904
all versions
lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV
CVE-2014-3566
all versions
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easi
3.4
LOW
CVE-2014-3074
all versions
The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently
CVE-2014-3977
all versions
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a tempora
CVE-2014-0930
all versions
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash
CVE-2014-0899
all versions
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows re
CVE-2013-5419
all versions
Multiple buffer overflows in (1) mkque and (2) mkquedev in bos.rte.printers in IBM AIX 6.1 and 7.1 allow local users to gain privi
CVE-2013-4011
all versions
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local
CVE-2013-3005
all versions
The TFTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, when RBAC is enabled, allows remote authenticated users to b
CVE-2013-3035
all versions
The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote attackers to cau
CVE-2012-4845
all versions
The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, w
CVE-2012-4833
all versions
fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to
CVE-2012-4817
all versions
The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS before 2.2.1.4-FP-25 SP-02, does not properly handle GID va
CVE-2012-0723
all versions
The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which a
CVE-2012-2200
all versions
The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges
CVE-2012-2179
all versions
libodm.a in IBM AIX 5.3, 6.1, and 7.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
CVE-2012-2192
all versions
The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service
CVE-2012-0745
all versions
The getpwnam function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.1.0.10 through 2.2.1.3 does not properly interact with customer-exte
CVE-2011-1385
all versions
IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.1.x and 2.2.x, allows remote attackers to cause a denial of service (system crash) via an IC
CVE-2012-0194
all versions
The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cau
CVE-2011-1375
all versions
IBM AIX 6.1 and 7.1 does not restrict the wpar_limits_config and wpar_limits_modify system calls, which allows local users to caus
CVE-2011-3982
all versions
The Fibre Channel driver for QLogic adapters in IBM AIX 6.1 and 7.1 does not properly handle DMA resource limitations, which allow
CVE-2011-1561
all versions
The LDAP login feature in bos.rte.security 6.1.6.4 in IBM AIX 6.1, when ldap_auth is enabled in ldap.cfg, allows remote attackers
CVE-2011-0637
all versions
The FC SCSI protocol driver in IBM AIX 6.1 does not verify that a timer is unused before deallocating this timer, which might allo
CVE-2010-3406
all versions
Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM AIX 5.3 allows local users to leverage system group members
CVE-2010-3405
all versions
Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1, 5.3, and earlier and VIOS 2.1, 1.5, and earlier allows local
CVE-2010-3187
<= 5.3
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.
CVE-2010-1039
<= 5.3
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier
CVE-2010-1124
all versions
bos.rte.libc 5.3.9.4 on IBM AIX 5.3 does not properly support reading a certain address field after a successful getaddrinfo funct
CVE-2010-0961
all versions
Buffer overflow in qoslist in bos.net.tcp.server in IBM AIX 6.1 and VIOS 2.1 allows local users to gain privileges via unspecified
CVE-2010-0960
all versions
Buffer overflow in qosmod in bos.net.tcp.server in IBM AIX 6.1 and VIOS 2.1 allows local users to gain privileges via unspecified
CVE-2010-0922
all versions
Unspecified vulnerability in secldapclntd in IBM AIX 5.3 with SP 5300-11-02 allows attackers to cause a denial of service (LDAP lo
CVE-2009-4362
all versions
Multiple buffer overflows in qosmod in IBM AIX 6.1 allow local users to cause a denial of service (application crash) or possibly
CVE-2009-4361
all versions
Multiple buffer overflows in qoslist in IBM AIX 6.1 allow local users to cause a denial of service (application crash) or possibly
CVE-2009-3699
all versions
Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and
CVE-2009-3517
all versions
nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote
CVE-2009-3516
all versions
gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which al
CVE-2009-2727
all versions
Stack-based buffer overflow in the _tt_internal_realpath function in the ToolTalk library (libtt.a) in IBM AIX 5.2.0, 5.3.0, 5.3.7
CVE-2009-2669
all versions
A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE env
CVE-2009-2434
all versions
Buffer overflow in the syscall implementation in IBM AIX 5.3 allows local users to gain privileges via unspecified vectors.
CVE-2009-1954
all versions
Unspecified vulnerability in portmapper (aka portmap) in IBM AIX 5.3 allows attackers to cause a denial of service (daemon hang) v
CVE-2009-1786
all versions
The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack
CVE-2009-1355
all versions
Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename.
CVE-2009-0779
all versions
Buffer overflow in pppdial in IBM AIX 5.3 and 6.1 allows local users to gain privileges via a long "input string."
CVE-2009-0536
all versions
at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via u
CVE-2009-0370
all versions
Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related t
CVE-2008-5387
all versions
Buffer overflow in autoconf6 in IBM AIX 6.1.0 through 6.1.2, when Role-Based Access Control is enabled, allows local users with ai
CVE-2008-5386
all versions
Buffer overflow in ndp in IBM AIX 6.1.0 through 6.1.2, when the netcd daemon is running, allows local users to gain privileges via
CVE-2008-5385
all versions
enq in bos.rte.printers in IBM AIX 6.1.0 through 6.1.2, when a print queue is defined in /etc/qconfig, allows local users to delet
CVE-2008-5384
all versions
crontab in bos.rte.cron in IBM AIX 6.1.0 through 6.1.2 allows local users with aix.system.config.cron authorization to gain privil
CVE-2008-4018
all versions
swcons in bos.rte.console in IBM AIX 5.2.0 through 6.1.1 allows local users in the system group to create or overwrite an arbitrar
CVE-2007-6717
all versions
Buffer overflow in tftp in bos.net.tcp.client in IBM AIX 5.2.0 and 5.3.0 allows local users to gain privileges via unspecified vec
CVE-2008-2515
all versions
Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related
CVE-2008-2514
all versions
Buffer overflow in errpt in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown attack vectors.
CVE-2008-2513
all versions
Buffer overflow in the kernel in IBM AIX 5.2, 5.3, and 6.1 allows local users to execute arbitrary code in kernel mode via unknown
CVE-2008-1710
all versions
Untrusted search path vulnerability in chnfsmnt in IBM AIX 6.1 allows local users to gain privileges via a modified PATH environme
CVE-2008-1601
all versions
Stack-based buffer overflow in the reboot program on IBM AIX 5.2 and 5.3 allows local users in the shutdown group to gain privileg
CVE-2008-1600
all versions
The lsmcode program on IBM AIX 5.2, 5.3, and 6.1 does not properly handle environment variables, which allows local users to gain
CVE-2008-1599
all versions
The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain p
CVE-2008-1598
all versions
The kernel in IBM AIX 6.1 allows local users with ProbeVue privileges to read arbitrary kernel memory and obtain sensitive informa
CVE-2008-1597
all versions
The WPAR system call implementation in the kernel in IBM AIX 6.1 allows local users to cause a denial of service via unknown calls
CVE-2008-1596
all versions
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchk_block_write function, which might a
CVE-2008-1595
all versions
The proc filesystem in the kernel in IBM AIX 5.2 and 5.3 does not properly enforce directory permissions when a file executing fro
CVE-2008-1594
all versions
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across mul
CVE-2008-1593
all versions
The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allow
CVE-2008-1274
all versions
Untrusted search path vulnerability in man in IBM AIX 6.1.0 allows local users to execute arbitrary code via a malicious program i
CVE-2008-0589
all versions
The ps program in bos.rte.control in IBM AIX 5.2, 5.3, and 6.1 allows local users to obtain sensitive information via unspecified
CVE-2008-0588
all versions
Buffer overflow in the utape program in devices.scsi.tape.diag in IBM AIX 5.2 and 5.3 allows local users to gain privileges via un
CVE-2008-0587
all versions
Buffer overflow in the uspchrp program in devices.chrp.base.diag in IBM AIX 5.2 and 5.3 allows local users to gain privileges via
CVE-2008-0586
all versions
Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors related to the (1) l
CVE-2008-0585
all versions
sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allo
CVE-2008-0584
all versions
Multiple buffer overflows in bos.rte.control in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors r
CVE-2008-0509
all versions
Multiple buffer overflows in IBM AIX 4.3 allow remote attackers to cause a denial of service (crash) or possibly gain privileges v
CVE-2007-5764
all versions
Buffer overflow in the pioout program in printers.rte in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a lon
CVE-2007-6680
all versions
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchk_block_write function, which might a
CVE-2007-5805
all versions
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in th
CVE-2007-5804
all versions
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in th
CVE-2007-4623
all versions
Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary cod
CVE-2007-4622
all versions
Integer underflow in the dns_name_fromtext function in (1) libdns_nonsecure.a and (2) libdns_secure.a in IBM AIX 5.2 allows local
CVE-2007-4621
all versions
Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments.
CVE-2007-4513
all versions
Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "
CVE-2007-4217
all versions
Stack-based buffer overflow in the domacro function in ftp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long
CVE-2007-4799
all versions
The perfstat kernel extension in bos.perf.perfstat in AIX 5.3 does not verify privileges when processing a SET call, which allows
CVE-2007-4798
all versions
Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete syste
CVE-2007-4797
all versions
Multiple buffer overflows in unspecified svprint (System V print) commands in bos.svprint.rte in IBM AIX 5.2 and 5.3 allow local u
CVE-2007-4796
all versions
Buffer overflow in uucp in bos.net.uucp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.
CVE-2007-4795
all versions
Buffer overflow in mkpath in bos.rte.methods in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long ODM name.
CVE-2007-4794
all versions
Buffer overflow in fcstat in devices.common.IBM.fc.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long inp
CVE-2007-4793
all versions
Buffer overflow in xlplm in plm.server.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.
CVE-2007-4792
all versions
Buffer overflow in ibstat in devices.common.IBM.ib.rte in IBM AIX 5.3 allows local users to gain privileges via unspecified vector
CVE-2007-4791
all versions
Buffer overflow in the swcons command in bos.rte.console in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecif
CVE-2007-4355
all versions
Buffer overflow in the at program on IBM AIX 5.3 allows local users to gain privileges via unspecified vectors.
CVE-2007-4354
all versions
Buffer overflow in fileplace in bos.perf.tools in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vector
CVE-2007-4353
all versions
Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users in the system group to gain root privileges via unspecified vec
CVE-2007-4238
all versions
AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privile
CVE-2007-4237
all versions
Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileg
CVE-2007-4236
all versions
Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privile
CVE-2007-4228
all versions
rmpvc on IBM AIX 4.3 allows local users to cause a denial of service (system crash) via long port logical name (-l) argument.
CVE-2007-4004
all versions
Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vector
CVE-2007-4003
all versions
pioout in IBM AIX 5.3 SP6 allows local users to execute arbitrary code by specifying a malicious library with the -R (ParseRoutine
CVE-2007-3333
all versions
Stack-based buffer overflow in capture in IBM AIX 5.3 SP6 and 5.2.0 allows remote attackers to execute arbitrary code via a large
CVE-2007-3680
all versions
Stack-based buffer overflow in the odm_searchpath function in libodm in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbi
CVE-2007-2996
all versions
Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows l
CVE-2007-2995
all versions
Unspecified vulnerability in sysmgt.websm.rte in IBM AIX 5.2.0 and 5.3.0 has unknown impact and attack vectors.
CVE-2007-1798
all versions
Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly e
CVE-2007-0978
all versions
Buffer overflow in swcons in IBM AIX 5.3 allows local users to gain privileges via long input data.
CVE-2007-0670
all versions
Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the "r-commands", possibly
CVE-2007-0618
all versions
Unspecified vulnerability in (1) pop3d, (2) pop3ds, (3) imapd, and (4) imapds in IBM AIX 5.3.0 has unspecified impact and attack v
CVE-2007-0392
all versions
IBM AIX 5.3 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain priv
CVE-2006-6915
all versions
ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified v
CVE-2006-6914
all versions
Unspecified vulnerability in ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote attackers to obtain sensitive information, including pa
CVE-2006-5011
all versions
Untrusted search path vulnerability in snappd in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via a Tr
CVE-2006-5010
all versions
Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the
CVE-2006-5009
all versions
Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbit
CVE-2006-5008
all versions
Unspecified vulnerability in utape in IBM AIX 5.2.0 and 5.3.0 allows attackers to execute arbitrary commands and overwrite arbitra
CVE-2006-5007
all versions
Untrusted search path vulnerability in uucp in IBM AIX 5.2.0 and 5.3.0 allows local users to local users to gain privileges via a
CVE-2006-5006
all versions
Buffer overflow in cfgmgr in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code via a long directory path argume
CVE-2006-5005
all versions
Unspecified vulnerability in bos.net.tcp.client in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via un
CVE-2006-5004
all versions
Unspecified vulnerability in the rdist command in IBM AIX 5.2.0 and 5.3.0 allows local users to overwrite arbitrary files via unsp
CVE-2006-5003
all versions
Unspecified vulnerability in the named8 command in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via un
CVE-2006-4522
all versions
Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privileges via u
CVE-2006-4416
all versions
Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying
CVE-2006-4254
all versions
Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vector
CVE-2006-2647
all versions
Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands
CVE-2006-1247
all versions
rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack
CVE-2006-1246
all versions
Unspecified vulnerability in mklvcopy in BOS.RTE.LVM in IBM AIX 5.3 allows local users to execute arbitrary commands when mklvcopy
CVE-2006-0667
all versions
lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack.
CVE-2006-0666
all versions
Unspecified vulnerability in the (1) unix_mp and (2) unix_64 kernels in IBM AIX 5.3 VRMF 5.3.0.30 through 5.3.0.33 allows local us
CVE-2006-0674
all versions
Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (c
CVE-2006-0133
all versions
Multiple directory traversal vulnerabilities in AIX 5.3 ML03 allow local users to determine the existence of files and read partia
CVE-2005-4273
all versions
Multiple unspecified vulnerabilities in (1) getShell and (2) getCommand in IBM AIX 5.3 allow local users to append to arbitrary fi
CVE-2005-4272
all versions
Multiple buffer overflows in IBM AIX 5.1, 5.2, and 5.3 allow remote attackers to execute arbitrary code via (1) muxatmd and (2) sl
CVE-2005-4271
all versions
Buffer overflow in the malloc debug system in IBM AIX 5.3 allows local users to execute arbitrary code.
CVE-2005-4068
all versions
Unspecified "absolute path vulnerability" in umountall in IBM AIX 5.1 through 5.3 allows local users to cause unknown impact via u
CVE-2005-3749
all versions
Unspecified "absolute path vulnerabilities" in the diagela command (diagela.sh) in IBM AIX 5.2 and 5.3 have unknown impact and att
CVE-2005-3504
all versions
Buffer overflow in swcons in IBM AIX 5.2, when debug malloc is enabled, allows remote attackers to cause a core dump and possibly
CVE-2005-3396
all versions
Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execu
CVE-2005-3289
all versions
LSCFG in IBM AIX 5.2 and 5.3 does not create temporary files securely, which allows local users to corrupt /etc/passwd and possibl
CVE-2005-3060
all versions
Buffer overflow in getconf in IBM AIX 5.2 to 5.3 allows local users to execute arbitrary code via unknown vectors.
CVE-2005-2238
all versions
ftpd in IBM AIX 5.1, 5.2 and 5.3 allows remote authenticated users to cause a denial of service (port exhaustion and memory consum
CVE-2005-2236
all versions
Format string vulnerability in the paginit command in IBM AIX 5.3, and possibly other versions, might allow local users to execute
CVE-2005-2235
all versions
Buffer overflow in the diagTasksWebSM command in IBM AIX 5.1, 5.2 and 5.3, might allow local users to execute arbitrary code via l
CVE-2005-2233
all versions
Buffer overflow in multiple "p" commands in IBM AIX 5.1, 5.2 and 5.3 might allow local users to execute arbitrary code via long co
CVE-2005-2232
all versions
Buffer overflow in invscout in IBM AIX 5.1.0 through 5.3.0 might allow local users to execute arbitrary code via a long command li
CVE-2005-1176
all versions
Race condition in JFS2 on AIX 5.2 and 5.3, when deleting a file while I/O is still occurring for that file, may write data to a di
CVE-2005-1037
all versions
Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.
CVE-2005-0263
all versions
Buffer overflow in netpmon on AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via a long -O argument.
CVE-2005-0262
all versions
Buffer overflow in ipl_varyon on AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via a long -d argument.
CVE-2005-0250
all versions
Format string vulnerability in auditselect on IBM AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via format st
CVE-2005-0240
all versions
Format string vulnerability in chdev on IBM AIX 5.2 allows local users to execute arbitrary code via format string specifiers in a
CVE-2005-0261
all versions
lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing the -f option, which allows loca
CVE-2005-0156
all versions
Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to exec
CVE-2004-1054
all versions
Untrusted execution path vulnerability in invscout in IBM AIX 5.1.0, 5.2.0, and 5.3.0 allows local users to gain privileges by mod
CVE-2004-1028
all versions
Untrusted execution path vulnerability in chcod on AIX IBM 5.1.0, 5.2.0, and 5.3.0 allows local users to execute arbitrary program
CVE-2004-2697
all versions
The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink
CVE-2004-2388
all versions
rexecd for AIX 4.3.3 does not properly use a local copy of the pwd structure when calling getpwnam, which may cause the structure
CVE-2004-2312
all versions
Buffer overflow in GNU make for IBM AIX 4.3.3, when installed setgid, allows local users to gain privileges via a long CC argument
CVE-2004-1330
all versions
Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username.
CVE-2004-1329
all versions
Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1
CVE-2004-0243
all versions
AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which al
CVE-2004-0828
all versions
The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -
CVE-2004-0545
all versions
LVM for AIX 5.1 and 5.2 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2004-0544
all versions
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb comma
CVE-2004-0368
all versions
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbi
CVE-2003-0257
all versions
Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privi
CVE-2003-1018
all versions
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privile
CVE-2003-0170
all versions
Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gai
CVE-2003-0119
all versions
The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remot
CVE-2003-0696
all versions
The getipnodebyname() API in AIX 5.1 and 5.2 does not properly close sockets, which allows attackers to cause a denial of service
CVE-2003-0954
all versions
Buffer overflow in rcp for AIX 4.3.3, 5.1 and 5.2 allows local users to gain privileges.
CVE-2003-0914
all versions
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that
CVE-2003-0784
all versions
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via
CVE-2003-0697
all versions
Format string vulnerability in lpd in the bos.rte.printers fileset for AIX 4.3 through 5.2, with debug enabled, allows local users
CVE-2003-0694
all versions
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstr
CVE-2003-0681
all versions
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final
CVE-2003-0285
<= 5.2
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_un
CVE-2002-1468
all versions
Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root.
CVE-2002-1551
all versions
Buffer overflow in nslookup in IBM AIX may allow attackers to cause a denial of service or execute arbitrary code.
CVE-2002-1550
all versions
dump_smutil.sh in IBM AIX allows local users to overwrite arbitrary files via a symlink attack on temporary files.
CVE-2002-1548
all versions
Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root,
CVE-2003-0028
all versions
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries
CVE-2003-0064
all versions
The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert i
CVE-2002-1690
all versions
Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY2
CVE-2002-1689
all versions
Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables
CVE-2002-1687
all versions
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long
CVE-2002-1686
all versions
Buffer overflow in lscfg of unknown versions of AIX has unknown impact.
CVE-2002-1622
all versions
Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data
CVE-2002-1201
all versions
IBM AIX 4.3.3 and AIX 5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a flood of malformed T
CVE-2002-1041
all versions
Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames.
CVE-2002-1040
all versions
Unknown vulnerability in the WebSecure (DFSWeb) configuration utilities in AIX 4.x, possibly related to relative pathnames.
CVE-2002-0679
all versions
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to exec
CVE-2002-0790
all versions
clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain pr
CVE-2002-0747
all versions
Buffer overflow in lsmcode in AIX 4.3.3.
CVE-2002-0746
all versions
Vulnerability in template.dhcpo in AIX 4.3.3 related to an insecure linker argument.
CVE-2002-0745
all versions
Buffer overflow in uucp in AIX 4.3.3.
CVE-2002-0744
all versions
namerslv in AIX 4.3.3 core dumps when called with a very long argument, possibly as a result of a buffer overflow.
CVE-2002-0743
all versions
mail and mailx in AIX 4.3.3 core dump when called with a very long argument, an indication of a buffer overflow.
CVE-2002-0742
all versions
Buffer overflow in pioout on AIX 4.3.3.
CVE-2002-0678
all versions
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction
CVE-2002-0677
all versions
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibl
CVE-2002-1621
all versions
Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.
CVE-2002-1619
all versions
Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump).
CVE-2001-1079
all versions
create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which
CVE-2001-1557
all versions
Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges.
CVE-2001-1554
all versions
IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via Path Maxim
CVE-2001-1529
all versions
Buffer overflow in rpc.yppasswdd (yppasswd server) in AIX allows attackers to gain unauthorized access via a long string. NOTE: d
CVE-2001-1440
all versions
Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to
CVE-2001-0797
all versions
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a l
CVE-2001-0671
all versions
Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain ro
CVE-2001-1096
all versions
Buffer overflows in muxatmd in AIX 4 allows an attacker to cause a core dump and possibly execute code.
CVE-2001-1095
all versions
Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter.
CVE-2001-0998
all versions
IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a po
CVE-2001-1061
all versions
Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error.
CVE-2001-0554
all versions
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary comma
CVE-2001-0533
all versions
Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environment
CVE-2001-0573
all versions
lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in
CVE-2001-1080
all versions
diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local us
CVE-2001-1330
all versions
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
CVE-2001-1329
all versions
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
CVE-2000-1124
all versions
Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables.
CVE-2000-1123
all versions
Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands.
CVE-2000-1122
all versions
Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long ar
CVE-2000-1121
all versions
Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argu
CVE-2000-1120
all versions
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands.
CVE-2000-1119
all versions
Buffer overflow in setsenv command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands via a long "x=" a
CVE-2000-1222
<= 4.2.1.12
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privil
CVE-2000-0873
all versions
netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface stat
CVE-2000-0844
all versions
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows loc
CVE-2000-0466
all versions
AIX cdmount allows local users to gain root privileges via shell metacharacters.
CVE-2000-0441
all versions
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems
CVE-2000-0249
all versions
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in th
CVE-1999-0693
all versions
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
CVE-2000-1216
all versions
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error rout
CVE-2000-0080
all versions
AIX techlibss allows local users to overwrite files via a symlink attack.
CVE-1999-1589
all versions
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors.
CVE-1999-1117
all versions
lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.
CVE-1999-0851
all versions
Denial of service in BIND named via naptr.
CVE-1999-0835
all versions
Denial of service in BIND named via malformed SIG records.
CVE-1999-0903
all versions
genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.
CVE-1999-1583
all versions
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument.
CVE-1999-0789
all versions
Buffer overflow in AIX ftpd in the libc library.
CVE-1999-1013
all versions
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f para
CVE-1999-0691
all versions
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user na
CVE-1999-0687
all versions
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
CVE-1999-0745
all versions
Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.
CVE-1999-0694
all versions
Denial of service in AIX ptrace system call allows local users to crash the system.
CVE-1999-1079
all versions
Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.
CVE-1999-1405
all versions
snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear t
CVE-1999-0057
all versions
Vacation program allows command execution by remote users through a sendmail command.
CVE-1999-0118
all versions
AIX infod allows local users to gain root access through an X display.
CVE-1999-0088
all versions
IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.
CVE-1999-1574
all versions
Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrar
CVE-1999-1480
all versions
(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.
CVE-1999-0055
all versions
Buffer overflows in Sun libnsl allow root access.
CVE-1999-0011
all versions
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
5.4
MEDIUM
CVE-1999-0010
all versions
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
CVE-1999-0009
all versions
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-1999-0003
all versions
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-1999-1075
all versions
inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port
CVE-1999-1486
all versions
sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbi
CVE-1999-0087
all versions
Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.
CVE-1999-1487
all versions
Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system.
CVE-1999-0014
all versions
Unauthorized privileged access or denial of service via dtappgather program in CDE.
CVE-1999-0086
all versions
AIX routed allows remote users to modify sensitive files.
CVE-1999-0513
all versions
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
CVE-1999-0017
all versions
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVE-1999-0018
all versions
Buffer overflow in statd allows root privileges.
CVE-1999-0097
all versions
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).
CVE-1999-0094
all versions
AIX piodmgrsu command allows local users to gain additional group privileges.
CVE-1999-0093
all versions
AIX nslookup command allows local users to obtain root access by not dropping privileges correctly.
CVE-1999-0092
all versions
Various vulnerabilities in the AIX portmir command allows local users to obtain root access.
CVE-1999-0091
all versions
Buffer overflow in AIX writesrv command allows local users to obtain root access.
CVE-1999-0089
all versions
Buffer overflow in AIX libDtSvc library can allow local users to gain root access.
CVE-1999-0072
all versions
Buffer overflow in AIX xdat gives root access to local users.
CVE-1999-0090
all versions
Buffer overflow in AIX rcp command allows local users to obtain root access.
CVE-1999-0115
all versions
AIX bugfiler program allows local users to gain root access.
CVE-1999-0024
all versions
DNS cache poisoning via BIND, by predictable query IDs.
CVE-1999-0566
all versions
An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities
CVE-1999-0524
all versions
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
4.0
MEDIUM
CVE-1999-1208
all versions
Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long command line argument.
CVE-1999-0122
all versions
Buffer overflow in AIX lchangelv gives root access.
CVE-1999-0628
all versions
The rwho/rwhod service is running, which exposes machine status and user information.
CVE-1999-0111
all versions
RIP v1 is susceptible to spoofing.
CVE-1999-0033
all versions
Command execution in Sun systems via buffer overflow in the at program.
CVE-1999-0064
all versions
Buffer overflow in AIX lquerylv program gives root access to local users.
CVE-1999-0112
all versions
Buffer overflow in AIX dtterm program for the CDE.
CVE-1999-0040
all versions
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVE-1999-0038
all versions
Buffer overflow in xlock program allows local users to execute commands as root.
8.4
HIGH
CVE-1999-0042
all versions
Buffer overflow in University of Washington's implementation of IMAP and POP servers.
CVE-1999-1408
all versions
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to c
CVE-1999-0318
all versions
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVE-1999-0041
all versions
Buffer overflow in NLS (Natural Language Service).
CVE-1999-0046
all versions
Buffer overflow of rlogin program using TERM environmental variable.
CVE-1999-0048
all versions
Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.
CVE-1999-0345
all versions
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
CVE-1999-0128
all versions
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
CVE-1999-0101
all versions
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.
CVE-1999-0129
all versions
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
CVE-1999-0130
all versions
Local users can start Sendmail in daemon mode and gain root privileges.
CVE-1999-0116
all versions
Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete t
CVE-1999-0131
all versions
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
CVE-1999-0085
all versions
Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet wit
CVE-1999-0023
all versions
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
CVE-1999-0022
all versions
Local user gains root privileges via buffer overflow in rdist, via expstr() function.
7.8
HIGH
CVE-1999-0138
all versions
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.
CVE-1999-0019
all versions
Delete or create a file via rpc.statd, due to invalid information.
CVE-1999-0078
all versions
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC
CVE-1999-0208
all versions
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
CVE-1999-0099
all versions
Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.
CVE-1999-1552
<= 3.2.5
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local us
CVE-1999-0337
all versions
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled.
CVE-1999-0113
all versions
Some implementations of rlogin allow root access if given a -froot parameter.
CVE-1999-0338
all versions
AIX Licensed Program Product performance tools allow local users to gain root access.
CVE-1999-1119
all versions
FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary co
CVE-1999-0117
all versions
AIX passwd allows local users to gain root access.
CVE-1999-1121
<= 3.2
The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges.
CVE-1999-0627
all versions
The rexd service is running, which uses weak authentication that can allow an attacker to execute commands.
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin