Aix@6.1.1 Security Vulnerabilities and Issues — Aix@6.1.1 CVE List

Lucene search

IbmAix6.1.1

11 matches found

CVE•added 2009/10/15 10:30 a.m.•55 views

CVE-2009-3699

Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd.

10CVSS7.6AI score0.78521EPSS

CVE•added 2018/02/13 8:29 p.m.•50 views

CVE-2018-1383

A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117.

9.1CVSS8.7AI score0.0054EPSS

CVE•added 2009/08/10 11:30 p.m.•49 views

CVE-2009-2727

Stack-based buffer overflow in the _tt_internal_realpath function in the ToolTalk library (libtt.a) in IBM AIX 5.2.0, 5.3.0, 5.3.7 through 5.3.10, and 6.1.0 through 6.1.3, when the rpc.ttdbserver daemon is enabled in /etc/inetd.conf, allows remote attackers to execute arbitrary code via a long XDR-...

9.3CVSS7.8AI score0.7763EPSS

CVE•added 2008/12/09 12:30 a.m.•42 views

CVE-2008-5386

Buffer overflow in ndp in IBM AIX 6.1.0 through 6.1.2, when the netcd daemon is running, allows local users to gain privileges via unspecified vectors.

6.9CVSS6.6AI score0.00051EPSS

CVE•added 2009/02/11 8:30 p.m.•41 views

CVE-2009-0536

at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.

4.9CVSS6AI score0.0006EPSS

CVE•added 2009/10/01 3:30 p.m.•39 views

CVE-2009-3517

nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote attackers to bypass intended access restrictions for NFSv4 shares via unspecified vectors.

10CVSS6.4AI score0.02511EPSS

CVE•added 2008/12/09 12:30 a.m.•37 views

CVE-2008-5384

crontab in bos.rte.cron in IBM AIX 6.1.0 through 6.1.2 allows local users with aix.system.config.cron authorization to gain privileges by launching an editor.

6.9CVSS6.3AI score0.00046EPSS

CVE•added 2009/10/01 3:30 p.m.•37 views

CVE-2009-3516

gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.

7.2CVSS5.9AI score0.0008EPSS

CVE•added 2008/12/09 12:30 a.m.•36 views

CVE-2008-5387

Buffer overflow in autoconf6 in IBM AIX 6.1.0 through 6.1.2, when Role-Based Access Control is enabled, allows local users with aix.network.config.tcpip authorization to gain privileges via unspecified vectors.

6.2CVSS6.6AI score0.00049EPSS

CVE•added 2009/01/30 7:30 p.m.•36 views

CVE-2009-0370

Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."

7.2CVSS6.4AI score0.00066EPSS

CVE•added 2008/12/09 12:30 a.m.•35 views

CVE-2008-5385

enq in bos.rte.printers in IBM AIX 6.1.0 through 6.1.2, when a print queue is defined in /etc/qconfig, allows local users to delete arbitrary files via unspecified vectors.

6.9CVSS6.1AI score0.0004EPSS