7 matches found
EUVD-2008-0598
Malware in sbrugna...
Buffer overflow
Buffer overflow in the utape program in devices.scsi.tape.diag in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors...
IBM AIX utape命令本地缓冲区溢出漏洞
BUGTRAQ ID: 27430 IBM AIX是一款商业性质的UNIX操作系统。 AIX的utape命令工具实现上存在缓冲区溢出漏洞,本地攻击者可能利用此漏洞提升权限。 utape是AIX诊断子系统中的一个命令。如果本地攻击者执行了以下命令的话: /usr/lpp/diagnostics/bin/utape 就可能触发缓冲区溢出,导致以root用户权限执行任意指令。但本地攻击者必须为system组的成员才能执行有漏洞的命令。 IBM AIX 5.3 IBM AIX 5.2 临时解决方法: 删除二进制程序的set-uid位: chmod 500...
IBM AIX utilities multiple security vulnerabilities
Xclock buffer overflow; utape, cfgmgr, rdist, uucp, snappd, named8 and mkvg privilege escalation; slip.login and Inventory Scout arbitrary file overwrite...
[SA22119] IBM AIX "utape" Privilege Escalation Vulnerability
TITLE: IBM AIX "utape" Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA22119 VERIFY ADVISORY: http://secunia.com/advisories/22119/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: AIX 5.x http://secunia.com/product/213/ DESCRIPTION: Two...
CVE-2006-5008
Summary: CVE-2006-5008 affects IBM AIX 5.2.0 and 5.3.0, specifically via the utape component, allowing attackers to remotely execute arbitrary commands and overwrite arbitrary files through unspecified vectors. The vulnerability is rated high (CVSS v2 base score 10.0) with network access, low att...
CVE-2006-5008
Unspecified vulnerability in utape in IBM AIX 5.2.0 and 5.3.0 allows attackers to execute arbitrary commands and overwrite arbitrary files via unspecified vectors...