Aix@4.1.1 Security Vulnerabilities and Issues — Aix@4.1.1 CVE List

Lucene search

IbmAix4.1.1

21 matches found

CVE•added 1999/09/29 4:0 a.m.•112 views

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

10CVSS7.5AI score0.90339EPSS

CVE•added 1999/09/29 4:0 a.m.•102 views

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

10CVSS7.2AI score0.01076EPSS

CVE•added 2001/01/22 5:0 a.m.•86 views

CVE-2000-0844

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

10CVSS7.7AI score0.00891EPSS

CVE•added 1999/09/29 4:0 a.m.•84 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

10CVSS7.1AI score0.0353EPSS

CVE•added 1999/09/29 4:0 a.m.•76 views

CVE-1999-0009

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

10CVSS7.3AI score0.8048EPSS

CVE•added 1999/09/29 4:0 a.m.•63 views

CVE-1999-0064

Buffer overflow in AIX lquerylv program gives root access to local users.

7.2CVSS7.5AI score0.00284EPSS

CVE•added 1999/09/29 4:0 a.m.•61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS

CVE•added 1999/09/29 4:0 a.m.•55 views

CVE-1999-0072

Buffer overflow in AIX xdat gives root access to local users.

7.2CVSS7.5AI score0.00071EPSS

CVE•added 1999/09/29 4:0 a.m.•54 views

CVE-1999-0093

AIX nslookup command allows local users to obtain root access by not dropping privileges correctly.

7.2CVSS6.6AI score0.00067EPSS

CVE•added 2000/01/04 5:0 a.m.•54 views

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.5CVSS7.3AI score0.07295EPSS

CVE•added 1999/09/29 4:0 a.m.•53 views

CVE-1999-0090

Buffer overflow in AIX rcp command allows local users to obtain root access.

7.2CVSS7.4AI score0.00071EPSS

CVE•added 1999/09/29 4:0 a.m.•53 views

CVE-1999-0094

AIX piodmgrsu command allows local users to gain additional group privileges.

4.6CVSS7.5AI score0.00081EPSS

CVE•added 2010/05/20 5:30 p.m.•49 views

CVE-2010-1039

Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request con...

10CVSS7.4AI score0.26547EPSS

CVE•added 1999/09/29 4:0 a.m.•48 views

CVE-1999-0091

Buffer overflow in AIX writesrv command allows local users to obtain root access.

7.2CVSS7.4AI score0.00071EPSS

CVE•added 1999/09/29 4:0 a.m.•47 views

CVE-1999-0122

Buffer overflow in AIX lchangelv gives root access.

7.2CVSS7.7AI score0.06705EPSS

CVE•added 2001/09/12 4:0 a.m.•47 views

CVE-1999-1487

Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system.

7.2CVSS7.5AI score0.00161EPSS

CVE•added 2000/07/12 4:0 a.m.•47 views

CVE-2000-0441

Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.

5CVSS7AI score0.00519EPSS

CVE•added 2001/09/12 4:0 a.m.•46 views

CVE-1999-1079

Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.

4.6CVSS6.8AI score0.00068EPSS

CVE•added 2000/01/04 5:0 a.m.•45 views

CVE-1999-0691

Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

7.2CVSS7.2AI score0.00367EPSS

CVE•added 2001/09/12 4:0 a.m.•41 views

CVE-1999-1408

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.

2.1CVSS7AI score0.00252EPSS

CVE•added 2004/09/01 4:0 a.m.•39 views

CVE-1999-1486

sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack.

1.2CVSS6.9AI score0.00088EPSS