21 matches found
EUVD-2008-1598
Malware in sbrugna...
CVE-2014-0899
CVE-2014-0899 affects IBM AIX ftpd when run inside a 5.2/5.3 WPAR on AIX 7.1.1 (before SP10) or 7.1.2 (before SP5). A remote authenticated user can bypass file-permission checks and modify arbitrary files via FTP commands. IBM published APARs IV51420 (SP10) and IV51421 (SP5) with fixes; workaroun...
AIX 7.1 TL 1 : wparcre (IV51420)
If ftpd is run in a 5.2 or 5.3 WPAR, a non-root user who logs in via ftp is allowed to access all files within the WPAR. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory wparcreadvisory.asc. include'deprecatednasllevel.inc';...
IBM AIX WPAR ftpd安全绕过漏洞
CVE ID:CVE-2014-0899 IBM AIX是一款商业性质的操作系统。 由于ftpd中的错误,可被利用来访问其它受限制的文件。 成功利用此漏洞,需要在5.2或5.3的WPAR环境中运行ftpd。 0 IBM AIX 7.1.1 IBM AIX 7.1.2 厂商补丁: IBM ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://aix.software.ibm.com/aix/efixes/security/wparcreadvisory.asc...
AIX WPAR vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Mar 6 11:54:14 CST 2014 | Updated: Tue Apr 8 09:03:53 CDT 2014 | Update: File set level for affected vwpar.53.rte corrected The most recent version of this document is available here:...
AIX 6.1 TL 5 : bos.mp64 (U842593)
The remote host is missing AIX PTF U842593, which is related to the security of the package bos.mp64. Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...
AIX 6.1 TL 6 : bos.mp64 (U849131)
The remote host is missing AIX PTF U849131, which is related to the security of the package bos.mp64. Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...
AIX 7.1 : bos.mp64 (U846561)
The remote host is missing AIX PTF U846561, which is related to the security of the package bos.mp64. Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...
AIX 6.1 TL 7 : bos.mp64 (U843022)
The remote host is missing AIX PTF U843022, which is related to the security of the package bos.mp64. Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...
AIX 5.2 TL 0 : kernel (IZ16992)
There are multiple vulnerabilities in the AIX kernel : a A 64-bit process that is restarted via the checkpoint and restart feature will gain read and write access to certain areas of kernel memory, resulting in execution of arbitrary code. Track with the following APAR numbers: IZ16992, IZ17111,...
AIX 5.3 TL 0 : kernel (IZ17111)
There are multiple vulnerabilities in the AIX kernel : a A 64-bit process that is restarted via the checkpoint and restart feature will gain read and write access to certain areas of kernel memory, resulting in execution of arbitrary code. Track with the following APAR numbers: IZ16992, IZ17111,...
AIX 5.3 TL 7 : kernel (IZ11820)
There are multiple vulnerabilities in the AIX kernel : a A 64-bit process that is restarted via the checkpoint and restart feature will gain read and write access to certain areas of kernel memory, resulting in execution of arbitrary code. Track with the following APAR numbers: IZ16992, IZ17111,...
AIX 6.1 TL 5 : wpar (IV10229)
Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory wparadvisory.asc. include'deprecatednasllevel.inc'; include'compat.inc...
AIX 7.1 TL 0 : wpar (IV10227)
Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory wparadvisory.asc. include'deprecatednasllevel.inc'; include'compat.inc...
AIX 6.1 TL 7 : wpar (IV08468)
Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory wparadvisory.asc. include'deprecatednasllevel.inc'; include'compat.inc...
AIX 7.1 TL 1 : wpar (IV08320)
Some WPAR specific system calls may cause undefined behavior, possibly resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory wparadvisory.asc. include'deprecatednasllevel.inc'; include'compat.inc...
IBM AIX WPAR系统调用本地拒绝服务漏洞(CVE-2011-1375)
Bugtraq ID: 50670 CVE ID:CVE-2011-1375 IBM AIX是一款商业性质的操作系统。 IBM AIX报告存在一个安全漏洞,允许本地恶意用户进行拒绝服务攻击。 "wparlimitsconfig"和"wparlimitsmodify"系统调用中存在错误,本地攻击者可以利用漏洞使系统崩溃 IBM Aix 7.1.1 IBM Aix 7.1 IBM Aix 6.1.7 IBM Aix 6.1.6 IBM AIX 6.1.5 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息:...
Design/Logic Flaw
The WPAR system call implementation in the kernel in IBM AIX 6.1 allows local users to cause a denial of service via unknown calls that trigger "undefined behavior."...
CVE-2008-1597
The CVE-2008-1597 entry concerns the IBM AIX 6.1 kernel WPAR system call implementation. A local denial of service can be triggered by unknown calls that cause undefined behavior, as described in the NVD entry. Exploitation details or affected versions beyond IBM AIX 6.1 are not provided in the d...
CVE-2008-1597
The WPAR system call implementation in the kernel in IBM AIX 6.1 allows local users to cause a denial of service via unknown calls that trigger "undefined behavior."...