ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
Max CVSS
2.1
EPSS Score
88.08%
Published
1997-08-01
Updated
2022-11-14
Denial of service in AIX ptrace system call allows local users to crash the system.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-08-11
Updated
2008-09-09
The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-05-25
Updated
2016-10-18
Denial of service in BIND named via naptr.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-11-10
Updated
2018-10-30
lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-31
Updated
2017-10-10
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.
Max CVSS
2.1
EPSS Score
0.04%
Published
1997-03-05
Updated
2016-10-18
AIX techlibss allows local users to overwrite files via a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-01-10
Updated
2016-10-18
netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-11-14
Updated
2017-10-10
IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query.
Max CVSS
2.1
EPSS Score
0.06%
Published
2001-02-16
Updated
2017-12-19
clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges.
Max CVSS
2.1
EPSS Score
0.04%
Published
2002-08-12
Updated
2008-09-10
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable.
Max CVSS
2.1
EPSS Score
0.04%
Published
2002-12-31
Updated
2008-09-05
The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF.
Max CVSS
2.1
EPSS Score
0.04%
Published
2002-12-31
Updated
2017-07-11
The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2004-11-03
Updated
2017-07-11
Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-02-07
Updated
2018-08-13
lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing the -f option, which allows local users to read one line of arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-02-10
Updated
2017-07-11
AS/400 running OS400 5.2 installs and enables LDAP by default, which allows remote authenticated users to obtain OS/400 user profiles by performing a search.
Max CVSS
2.1
EPSS Score
0.16%
Published
2005-05-02
Updated
2016-10-18
HTTP response splitting vulnerability in the @SetHTTPHeader function in Lotus Domino 6.5.x before 6.5.4 and 6.0.x before 6.0.5 allows attackers to poison the web cache via malicious applications.
Max CVSS
2.1
EPSS Score
0.07%
Published
2005-05-03
Updated
2017-07-11
Unknown vulnerability in IBM DB2 8.1.4 through 8.1.9 and 8.2.0 through 8.2.2 allows local users with SELECT privileges to conduct unauthorized activities and insert, update or delete table contents.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-06-29
Updated
2008-09-05
ftpd in IBM AIX 5.1, 5.2 and 5.3 allows remote authenticated users to cause a denial of service (port exhaustion and memory consumption) by using all ephemeral ports.
Max CVSS
2.1
EPSS Score
0.07%
Published
2005-07-12
Updated
2008-09-05
LSCFG in IBM AIX 5.2 and 5.3 does not create temporary files securely, which allows local users to corrupt /etc/passwd and possibly other system files via the trace file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-10-23
Updated
2008-09-05
db2fmp process in IBM DB2 Content Manager before 8.2 Fix Pack 10 allows local users to cause a denial of service (CPU consumption) by importing a corrupted Microsoft Excel file, aka "CORRUPTED EXEL FILE WILL CAUSE TEXT SEARCH PROCESS LOOPING."
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-11-16
Updated
2017-07-11
Multiple unspecified vulnerabilities in (1) getShell and (2) getCommand in IBM AIX 5.3 allow local users to append to arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-12-15
Updated
2018-10-19
The (1) to_char and (2) to_date function in IBM DB2 8.1 allows local users to cause a denial of service (application crash) via an empty string in the second parameter, which causes a null pointer dereference.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-12-31
Updated
2017-07-29
IBM Informix Dynamic Server (IDS) before 9.40.xC7 and 10.00 before 10.00.xC3 allows local users to cause a denial of service (crash) via unspecified vectors.
Max CVSS
2.1
EPSS Score
0.04%
Published
2006-08-08
Updated
2018-10-17
IBM Informix Dynamic Server (IDS) before 9.40.xC8 and 10.00 before 10.00.xC4 stores passwords in plaintext in shared memory, which allows local users to obtain passwords by reading the memory (product defects 171893, 171894, 173772).
Max CVSS
2.1
EPSS Score
0.04%
Published
2006-08-08
Updated
2018-10-17
143 vulnerabilities found
1 2 3 4 5 6
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!