| | Weak initial sequence number generation
updated since 03.05.2001
|
 | | Weak initial sequence number generation allows to spoof TCP connection. |
| | AIX lsmcode privilege escalation
updated since 30.05.2006
|
| | User's environment variable is used to launch external application. |
| | Privilege escalation in IBM AIX rm_mlcache_file with file overwrite
updated since 18.04.2006
|
| | Race conditions on temporary file creation. |
| 6! | Multiple AIX multiple vulnerabilities
updated since 16.12.2005
|
| | Buffer overflow in heap debugging, buffer overflows in muxatmd, slocal, file access privilege escalation in getShell and getCommand. |
| 6! | Multiple AIX privilege escalations
|
| | invscout, diagTasksWebSM, getlvname utilities buffer overflows. |
| | IBM AIX Bellmail mail agent race conditions
|
| | Race conditions during temporary file creations. |
| | Multiple IBM AIX utilities bugs
|
| | Buffer overflow, privilege escalation: ipl_varyon, lspath, netpmon. |
| 6! | Multiple AIX bugs
updated since 21.12.2004
|
| | lsmcode, diag_exec, invscout, invscoutd invoke external application with relative path, paginit - stack based buffer overflow. |
| | AIX Object Data Manager DoS |
| | | |
| 7! | AIX libXm.a multiple bugs |
| | | |
| 6! | IBM AIX Inventory Scout symbolic links problem
|
| | Unsafe temporary dirs usage. |
| 6! | IBM AIX libIM buffer overflow
updated since 14.02.2003
|
| | Buffer overflow on NLS functions. |
| | AIX utilities multiple bugs
|
| | Buffer overflows in errpt -T option parsing, lsmcode environment parsing. Symbolic link bug in diagrpt. |
| 10! | Buffer overflow in Sun rpc
updated since 31.07.2002
|
| | Buffer overflow in xdr_array primitive |
| | AIX TCP flood DoS
|
| | Flood with unflagged packets leads to 100% CPU usage and mbuf exhaustion. |
| 10! | Buffer overfllow in /bin/login under System V
updated since 13.12.2001
|
| | Buffer overflow on large name= request. Heap overflow in TTYPROMPT is trivially exploitable with remote root compromise. |
| 7! | Multiple bugs in CDE ToolTalk
updated since 11.07.2002
|
| | Incomplete input validation in different remote calls. |
| 7! | Переполнение буфера в CDE dt-утилитах - libdtsvc (buffer overflow)
updated since 24.07.2001 |
| | | |
| 9! | Ошибка форматной строки в ToolTalk rpc.ttdbserverd (format string) |
| | | |
| | Переполнение буфера в libi18n (buffer overflow) |
| | | |
| | Дырка в diagrpt из AIX (code execution) |
| | | |
| | |
