Filtered by vendor Ibm
Subscriptions
Filtered by product Aix
Subscriptions
Total
814 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1480 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | ||||
| CVE-1999-0097 | 3 Hp, Ibm, Sun | 4 Hp-ux, Aix, Solaris and 1 more | 2026-04-16 | N/A |
| The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). | ||||
| CVE-2002-1040 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Unknown vulnerability in the WebSecure (DFSWeb) configuration utilities in AIX 4.x, possibly related to relative pathnames. | ||||
| CVE-1999-1552 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges. | ||||
| CVE-2004-2388 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| rexecd for AIX 4.3.3 does not properly use a local copy of the pwd structure when calling getpwnam, which may cause the structure to be overwritten by the authenticate function and assign privileges to the wrong user. | ||||
| CVE-1999-0072 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Buffer overflow in AIX xdat gives root access to local users. | ||||
| CVE-2004-2634 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack on temporary files via unknown attack vectors. | ||||
| CVE-2002-1041 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Unknown vulnerability in DCE (1) SMIT panels and (2) configuration commands, possibly related to relative pathnames. | ||||
| CVE-2004-2697 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). NOTE: this might be related to CVE-2006-5002. | ||||
| CVE-1999-0566 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities. | ||||
| CVE-2005-0240 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Format string vulnerability in chdev on IBM AIX 5.2 allows local users to execute arbitrary code via format string specifiers in a command line argument, which is not properly handled when printing an error message. | ||||
| CVE-2000-0466 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| AIX cdmount allows local users to gain root privileges via shell metacharacters. | ||||
| CVE-1999-1408 | 2 Hp, Ibm | 2 Hp-ux, Aix | 2026-04-16 | N/A |
| Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost. | ||||
| CVE-2001-1080 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program. | ||||
| CVE-2002-1548 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called." | ||||
| CVE-1999-1075 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | ||||
| CVE-2002-1622 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." | ||||
| CVE-1999-0113 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Some implementations of rlogin allow root access if given a -froot parameter. | ||||
| CVE-2006-0666 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Unspecified vulnerability in the (1) unix_mp and (2) unix_64 kernels in IBM AIX 5.3 VRMF 5.3.0.30 through 5.3.0.33 allows local users to cause a denial of service (system crash) via unknown vectors related to EMULATE_VMX. | ||||
| CVE-2006-4416 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program. | ||||