8 matches found
EUVD-2000-1107
Malware in sbrugna...
CVE-2001-1080
CVE-2001-1080 affects AIX 4.3.x and 5.1; diagrpt uses the DIAGDATADIR environment variable to locate and execute programs, allowing local users to gain privileges by pointing the variable to a Trojan horse program. The connected records confirm the affected product/version and the root cause (env...
CVE-2000-1122
IBM AIX setclock is vulnerable to a local buffer overflow in handling the remote timeserver hostname, potentially allowing a local user to gain root privileges. Affected versions include AIX 4.3.x and earlier. IBM provided patches via APARs IY07790 (AIX 4.2) and IY07831 (AIX 4.3). CERT/CC notes t...
CVE-2000-1124
The CVE-2000-1124 entry describes a local privilege-escalation flaw in IBM AIX 4.3.x: a buffer overflow in the piobe command caused by long environmental variables. The affected component is the piobe command on IBM AIX 4.3.x; the underlying issue is a buffer overflow allowing local users to gain...
CVE-2000-1119
CVE-2000-1119 : A buffer overflow in the IBM AIX setsenv command (affected: AIX 4.3.x and earlier) can allow a local attacker to execute arbitrary commands with root privileges. The root cause is a vulnerable parameter handling in the setsenv utility; an exploit has been publicly available and re...
CVE-2000-1121
IBM AIX enq buffer overflow (CVE-2000-1121) in the -M argument of the enq command could allow a local user to gain root privileges. The vendor has published patches (APARs IY08143 for AIX 4.3 and IY08287 for AIX 4.2/4.3) to fix this issue; the vulnerability is associated with IBM AIX versions 4.3...
CVE-2000-1123
CVE-2000-1123 involves a buffer overflow in the pioout command on IBM AIX 4.3.x and earlier. The root cause is a vulnerable buffer handling in pioout, allowing local users to execute arbitrary commands with privileges on affected systems. Documents confirm the affected product as IBM AIX 4.3.x an...
CVE-2000-1120
CVE-2000-1120: IBM AIX digest command has a buffer overflow in a filename argument that may let a local attacker gain root privileges. Reported exploit exists; attacker must have local access and belong to the printq group. IBM provided patches via APARs IY08287 (AIX 4.2) and IY08143 (AIX 4.3) to...