IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.
Max CVSS
5.1
EPSS Score
0.04%
Published
2020-11-20
Updated
2023-02-03
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Force ID: 144748.
Max CVSS
5.5
EPSS Score
0.06%
Published
2018-06-22
Updated
2019-10-09
IBM AIX 7.1 and 7.2 allows a local user to open a file with a specially crafted argument that would crash the system. IBM APARs: IV91488, IV91487, IV91456, IV90234.
Max CVSS
5.5
EPSS Score
0.04%
Published
2017-02-15
Updated
2017-07-25
The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS before 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote attackers to cause a denial of service via unspecified vectors.
Max CVSS
5.0
EPSS Score
5.14%
Published
2012-09-14
Updated
2021-08-31
Unspecified vulnerability in ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote attackers to obtain sensitive information, including passwords, via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.95%
Published
2006-12-31
Updated
2011-03-08
AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.
Max CVSS
5.0
EPSS Score
0.19%
Published
2004-11-23
Updated
2017-07-11
The getipnodebyname() API in AIX 5.1 and 5.2 does not properly close sockets, which allows attackers to cause a denial of service (resource exhaustion).
Max CVSS
5.0
EPSS Score
0.38%
Published
2004-01-20
Updated
2017-07-11
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.
Max CVSS
5.0
EPSS Score
0.67%
Published
2003-06-16
Updated
2017-07-11
Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump).
Max CVSS
5.0
EPSS Score
1.07%
Published
2002-03-08
Updated
2017-07-11
IBM AIX 4.3.3 and AIX 5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a flood of malformed TCP packets without any flags set, which prevents AIX from releasing the associated memory buffers.
Max CVSS
5.0
EPSS Score
5.13%
Published
2002-10-28
Updated
2016-10-18
Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames.
Max CVSS
5.0
EPSS Score
0.29%
Published
2002-10-04
Updated
2011-03-08
Unknown vulnerability in the WebSecure (DFSWeb) configuration utilities in AIX 4.x, possibly related to relative pathnames.
Max CVSS
5.0
EPSS Score
0.17%
Published
2002-10-04
Updated
2008-09-05
IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via Path Maximum Transmit Unit (PMTU) IP packets.
Max CVSS
5.0
EPSS Score
0.16%
Published
2001-12-31
Updated
2008-09-05
IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure in snmpd.
Max CVSS
5.0
EPSS Score
0.87%
Published
2001-09-24
Updated
2017-10-10
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
Max CVSS
5.0
EPSS Score
0.20%
Published
2000-05-24
Updated
2008-09-10
inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd.
Max CVSS
5.0
EPSS Score
0.32%
Published
1998-03-18
Updated
2016-10-18
The rwho/rwhod service is running, which exposes machine status and user information.
Max CVSS
5.0
EPSS Score
0.37%
Published
1997-07-01
Updated
2022-08-17
An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities.
Max CVSS
5.0
EPSS Score
4.67%
Published
1997-08-01
Updated
2022-08-17
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
Max CVSS
5.0
EPSS Score
14.31%
Published
1998-01-05
Updated
2022-08-17
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
Max CVSS
5.0
EPSS Score
0.85%
Published
1997-01-01
Updated
2022-08-17
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
Max CVSS
5.0
EPSS Score
1.15%
Published
1996-12-18
Updated
2022-08-17
Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood.
Max CVSS
5.0
EPSS Score
8.20%
Published
1996-09-19
Updated
2008-09-09
RIP v1 is susceptible to spoofing.
Max CVSS
5.0
EPSS Score
3.06%
Published
1997-07-01
Updated
2022-08-17
Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.
Max CVSS
5.0
EPSS Score
4.67%
Published
1998-02-01
Updated
2008-09-09
AIX routed allows remote users to modify sensitive files.
Max CVSS
5.0
EPSS Score
0.22%
Published
1998-01-08
Updated
2022-08-17
28 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!