978 matches found
CVE-1999-1079
CVE-1999-1079 describes a local privilege-escalation vulnerability in AIX 4.3 where an attacker can gain privileges by attaching to a setgid program via ptrace. The description notes the affected component (ptrace on AIX 4.3) and the impact (local privilege escalation) with a CVSS-like metric ind...
CVE-1999-1480
Technical details on CVE-1999-1480 are not publicly provided in the supplied documents; no concrete affected products, root cause, or remediation are described here. Monitor for updates.
CVE-1999-1487
The CVE-1999-1487 entry describes a local privilege escalation in AIX 4.3 where printq users can gain root privileges by creating or modifying any file on the system via the vulnerable digest component. Affected software is AIX 4.3; the advisory notes root/complete impact (as reflected in the NVD...
CVE-1999-1480
1 acledit and 2 aclput in AIX 4.3 allow local users to create or modify files via a symlink attack...
PT-2001-2296 · Unknown · Tcp Wrappers
Name of the Vulnerable Software and Affected Versions: tcp wrappers versions 4.1.1 through 4.3 Description: The issue concerns the improper checking of the result of a reverse DNS lookup in tcp wrappers when the PARANOID ACL option is enabled. This could allow remote attackers to bypass intended...
vvfreebsd.txt
Georgi Guninski security advisory 48, 2001 FreeBSD 4.3 local root, yet Linux and BSD much better than Windows Systems affected: FreeBSD 4.3 and probably earlier versions. Risk: High Date: 10 July 2001 Legal Notice: This Advisory is Copyright c 2001 Georgi Guninski. You may distribute it unmodifie...
FreeBSD 4.3 local root, yet Linux and *BSD much better than Windows
Georgi Guninski security advisory 48, 2001 FreeBSD 4.3 local root, yet Linux and BSD much better than Windows Systems affected: FreeBSD 4.3 and probably earlier versions. Risk: High Date: 10 July 2001 Legal Notice: This Advisory is Copyright c 2001 Georgi Guninski. You may distribute it unmodifie...
CVE-2000-1121
IBM AIX enq buffer overflow (CVE-2000-1121) in the -M argument of the enq command could allow a local user to gain root privileges. The vendor has published patches (APARs IY08143 for AIX 4.3 and IY08287 for AIX 4.2/4.3) to fix this issue; the vulnerability is associated with IBM AIX versions 4.3...
CVE-2000-1119
CVE-2000-1119 : A buffer overflow in the IBM AIX setsenv command (affected: AIX 4.3.x and earlier) can allow a local attacker to execute arbitrary commands with root privileges. The root cause is a vulnerable parameter handling in the setsenv utility; an exploit has been publicly available and re...
CVE-2000-1122
IBM AIX setclock is vulnerable to a local buffer overflow in handling the remote timeserver hostname, potentially allowing a local user to gain root privileges. Affected versions include AIX 4.3.x and earlier. IBM provided patches via APARs IY07790 (AIX 4.2) and IY07831 (AIX 4.3). CERT/CC notes t...
CVE-2000-1123
CVE-2000-1123 involves a buffer overflow in the pioout command on IBM AIX 4.3.x and earlier. The root cause is a vulnerable buffer handling in pioout, allowing local users to execute arbitrary commands with privileges on affected systems. Documents confirm the affected product as IBM AIX 4.3.x an...
CVE-2000-1124
The CVE-2000-1124 entry describes a local privilege-escalation flaw in IBM AIX 4.3.x: a buffer overflow in the piobe command caused by long environmental variables. The affected component is the piobe command on IBM AIX 4.3.x; the underlying issue is a buffer overflow allowing local users to gain...
CVE-2000-1120
CVE-2000-1120: IBM AIX digest command has a buffer overflow in a filename argument that may let a local attacker gain root privileges. Reported exploit exists; attacker must have local access and belong to the printq group. IBM provided patches via APARs IY08287 (AIX 4.2) and IY08143 (AIX 4.3) to...
CVE-2000-0509
CVE-2000-0509 affects Sambar Server 4.3, specifically the finger and whois demonstration scripts. A buffer overflow triggered by a long hostname allows remote attackers to execute arbitrary commands. The connected documents do not provide a patch/version fix; no exploitation details are listed. T...
CVE-1999-1583
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument...
IBM AIX 4.3 - infod Local Privilege Escalation
IBM AIX 4.3 - infod Local Privilege Escalation / source: https://www.securityfocus.com/bid/370/info Certain versions of AIX ship with an Information Daemon, infod. This program is designed to provide information about the OS and installed ancilliary programs. The daemon which runs as root, does n...
IBM AIX 4.3 - 'infod' Local Privilege Escalation
/ source: https://www.securityfocus.com/bid/370/info Certain versions of AIX ship with an Information Daemon, infod. This program is designed to provide information about the OS and installed ancilliary programs. The daemon which runs as root, does not check credentials which are passed to it. Th...
PT-1989-1002 · Bsd · Bsd
Name of the Vulnerable Software and Affected Versions: BSD based operating systems versions 4.3 and earlier Description: A buffer overflow issue in the passwd component of BSD based operating systems allows local users to gain root privileges. This is achieved by specifying a long shell or GECOS...