Aix Security Vulnerabilities and Issues — Aix CVE List

Lucene search

IbmAix

3 matches found

CVE•added 2009/10/15 10:30 a.m.•55 views

CVE-2009-3699

Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd.

10CVSS7.6AI score0.78521EPSS

CVE•added 2009/10/01 3:30 p.m.•39 views

CVE-2009-3517

nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote attackers to bypass intended access restrictions for NFSv4 shares via unspecified vectors.

10CVSS6.4AI score0.02511EPSS

CVE•added 2009/10/01 3:30 p.m.•37 views

CVE-2009-3516

gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.

7.2CVSS5.9AI score0.0008EPSS