88 matches found
EUVD-2005-0241
Malware in sbrugna...
EUVD-2005-3744
Malware in sbrugna...
EUVD-2007-4221
Malware in sbrugna...
EUVD-2005-1179
Malware in sbrugna...
EUVD-2003-0775
Malware in sbrugna...
EUVD-2007-4604
Malware in sbrugna...
EUVD-2007-4220
Malware in sbrugna...
CVE-2003-0784
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers...
AIX 5.2 TL 10 : bos.net.tcp.client (U812052)
The remote host is missing AIX PTF U812052, which is related to the security of the package bos.net.tcp.client. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from AIX Security PTF U812052. The text itself is copyright C...
AIX 5.2 TL 9 / 5.2 TL 8 : bos.net.tcp.client (U477911)
The remote host is missing AIX PTF U477911, which is related to the security of the package bos.net.tcp.client. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from AIX Security PTF U477911. The text itself is copyright C...
AIX 5.2 TL 9 / 5.2 TL 10 : bos.net.uucp (U808255)
The remote host is missing AIX PTF U808255, which is related to the security of the package bos.net.uucp. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from AIX Security PTF U808255. The text itself is copyright C...
AIX 5.2 TL 0 : kernel (IZ16992)
There are multiple vulnerabilities in the AIX kernel : a A 64-bit process that is restarted via the checkpoint and restart feature will gain read and write access to certain areas of kernel memory, resulting in execution of arbitrary code. Track with the following APAR numbers: IZ16992, IZ17111,...
AIX 5.2 TL 0 : nddstat (IZ16991)
The nddstat family of commands contains an environment variable handling error. A local attacker may exploit this error to execute arbitrary code with root privileges because the commands are setuid root. The following files are vulnerable : /usr/sbin/atmstat /usr/sbin/entstat /usr/sbin/fddistat...
AIX 5.2 TL 0 : pioout (IZ10840)
Buffer overflow vulnerabilities exist in the 'printers.rte' fileset commands listed below. A local attacker may execute arbitrary code with root privileges because the commands are setuid root. The following commands are vulnerable : /usr/lib/lpd/pio/etc/pioout The fix for piomkpq for IZ01121 and...
AIX 5.2 TL 0 : muxatmd (IZ48495)
The muxatmd command contains a buffer which can overflow. A local attacker may exploit this overflow to execute arbitrary code with root privileges because the command is setuid root. The following file is vulnerable : /usr/sbin/muxatmd. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The te...
iDefense Security Advisory 10.07.09: IBM AIX rpc.cmsd Stack Buffer Overflow Vulnerability
iDefense Security Advisory 10.07.09 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 07, 2009 I. BACKGROUND IBM's AIX is a Unix operating system based on System V, which runs on the PowerPC PPC architecture. For more information, visit the product web site at the following URL...
AIX 5.2 TL 10 : X11.Dt.ToolTalk (U827247)
The remote host is missing AIX PTF U827247, which is related to the security of the package X11.Dt.ToolTalk. There is a buffer overflow vulnerability in the ToolTalk library libtt.a. A remote attacker can exploit this vulnerability when the rpc.ttdbserver is enabled in /etc/inetd.conf. The...
AIX 5.2 TL 10 : bos.acct (U817525)
The remote host is missing AIX PTF U817525, which is related to the security of the package bos.acct. The iostat command contains an environment variable handling error. A local attacker may exploit this error to execute arbitrary code with root privileges because the command is setuid root. The...
AIX 5.2 TL 10 : printers.rte (U815029)
The remote host is missing AIX PTF U815029, which is related to the security of the package printers.rte. Buffer overflow vulnerabilities exist in the 'printers.rte' fileset commands listed below. A local attacker may execute arbitrary code with root privileges because the commands are setuid roo...
Code injection
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service remote node crash by using chfs or lreducelv to reduce a filesystem's size...