Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Aix Security Vulnerabilities - 2004

cve
cve

CVE-2002-1468

Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root.

7.9AI Score

0.004EPSS

2004-09-01 04:00 AM
26
cve
cve

CVE-2002-1548

Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called."

7.9AI Score

0.0004EPSS

2004-09-01 04:00 AM
28
cve
cve

CVE-2002-1550

dump_smutil.sh in IBM AIX allows local users to overwrite arbitrary files via a symlink attack on temporary files.

6.5AI Score

0.0004EPSS

2004-09-01 04:00 AM
21
cve
cve

CVE-2003-0064

The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary...

7.2AI Score

0.003EPSS

2004-09-01 04:00 AM
26
cve
cve

CVE-2003-0119

The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remote attackers to directly connect to the daemon and conduct unauthorized activities.

6.7AI Score

0.01EPSS

2004-02-03 05:00 AM
23
cve
cve

CVE-2003-0170

Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors.

6.8AI Score

0.013EPSS

2004-03-29 05:00 AM
24
cve
cve

CVE-2003-0257

Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges.

6.8AI Score

0.0004EPSS

2004-04-15 04:00 AM
32
4
cve
cve

CVE-2003-0696

The getipnodebyname() API in AIX 5.1 and 5.2 does not properly close sockets, which allows attackers to cause a denial of service (resource exhaustion).

6.8AI Score

0.004EPSS

2004-01-20 05:00 AM
25
cve
cve

CVE-2003-1018

Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors.

6.6AI Score

0.001EPSS

2004-03-29 05:00 AM
29
cve
cve

CVE-2004-0243

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.

7.3AI Score

0.002EPSS

2004-11-23 05:00 AM
29
cve
cve

CVE-2004-0368

Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.

7.3AI Score

0.852EPSS

2004-05-04 04:00 AM
34
cve
cve

CVE-2004-0544

Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands.

6.8AI Score

0.0004EPSS

2004-08-06 04:00 AM
30
cve
cve

CVE-2004-0545

LVM for AIX 5.1 and 5.2 allows local users to overwrite arbitrary files via a symlink attack.

6.4AI Score

0.0004EPSS

2004-08-06 04:00 AM
42
cve
cve

CVE-2004-0828

The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.

6.3AI Score

0.0004EPSS

2004-11-03 05:00 AM
33