Vulnerabilities (CVE)

Vendor filter

Ibm Subscribe

Product filter

Aix Subscribe

Filter

331 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-1655 1 Ibm 1 Aix 2019-10-09 2.1
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Force ID: 144748.
CVE-2014-3566 11 Openssl, Apple, Redhat and 8 more 21 Vios, Suse Linux Enterprise Software Development Kit, Aix and 18 more 2019-10-09 4.3
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
CVE-2018-1383 1 Ibm 1 Aix 2019-10-03 9.0
A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117.
CVE-2017-1093 1 Ibm 1 Aix 2019-10-03 7.2
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to exploit a vulnerability in the bellmail binary to gain root privileges.
CVE-2010-3405 1 Ibm 2 Vios, Aix 2018-11-28 6.8
Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1, 5.3, and earlier and VIOS 2.1, 1.5, and earlier allows local users to leverage system group membership and gain privileges via unspecified vectors.
CVE-2010-3187 1 Ibm 1 Aix 2018-11-28 10.0
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.
CVE-1999-0835 3 Ibm, Sco, Sun 5 Openserver, Aix, Unixware and 2 more 2018-10-30 10.0
Denial of service in BIND named via malformed SIG records.
CVE-1999-0687 4 Ibm, Cde, Sun and 1 more 5 Cde, Unix, Aix and 2 more 2018-10-30 7.5
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
CVE-2002-0677 7 Xi Graphics, Sgi, Compaq and 4 more 9 Hp-ux, Aix, Solaris and 6 more 2018-10-30 7.5
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by...
CVE-2002-0678 7 Xi Graphics, Sgi, Compaq and 4 more 9 Hp-ux, Aix, Solaris and 6 more 2018-10-30 7.2
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
CVE-2002-0679 6 Xi Graphics, Compaq, Ibm and 3 more 8 Hp-ux, Aix, Solaris and 5 more 2018-10-30 10.0
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
CVE-1999-0691 4 Ibm, Cde, Sun and 1 more 5 Cde, Unix, Aix and 2 more 2018-10-30 7.2
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
CVE-2000-0844 13 Turbolinux, Conectiva, Slackware and 10 more 16 Aix, Solaris, Openlinux Eserver and 13 more 2018-10-30 10.0
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVE-2003-0028 10 Freebsd, Sgi, Ibm and 7 more 13 Hp-ux, Hp-ux Series 700, Aix and 10 more 2018-10-30 7.5
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code...
CVE-1999-0851 3 Ibm, Sco, Sun 5 Openserver, Aix, Unixware and 2 more 2018-10-30 2.1
Denial of service in BIND named via naptr.
CVE-2001-0554 8 Freebsd, Sgi, Ibm and 5 more 9 Aix, Solaris, Kerberos and 6 more 2018-10-30 10.0
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
CVE-2003-0694 11 Turbolinux, Apple, Freebsd and 8 more 18 Hp-ux, Aix, Solaris and 15 more 2018-10-30 10.0
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-1999-0318 4 Hp, Ibm, Sun and 1 more 5 Hp-ux, Linux, Aix and 2 more 2018-10-30 7.2
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVE-2001-0797 5 Sco, Hp, Ibm and 2 more 6 Openserver, Hp-ux, Aix and 3 more 2018-10-30 10.0
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVE-2003-0914 9 Sco, Nixu, Freebsd and 6 more 10 Hp-ux, Aix, Namesurfer and 7 more 2018-10-30 4.3
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.