Ibm Aix vulnerabilities

CVE-2002-0743 [CRITICAL] CVE-2002-0743: mail and mailx in AIX 4.3.3 core dump when called with a very long argument, an indication of a buff mail and mailx in AIX 4.3.3 core dump when called with a very long argument, an indication of a buffer overflow.

CVE-2002-0746 [CRITICAL] CVE-2002-0746: Vulnerability in template.dhcpo in AIX 4.3.3 related to an insecure linker argument. Vulnerability in template.dhcpo in AIX 4.3.3 related to an insecure linker argument.

CVE-2002-0744 [CRITICAL] CVE-2002-0744: namerslv in AIX 4.3.3 core dumps when called with a very long argument, possibly as a result of a bu namerslv in AIX 4.3.3 core dumps when called with a very long argument, possibly as a result of a buffer overflow.

CVE-2002-0678 [HIGH] CVE-2002-0678: CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a syml CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

CVE-2002-0677 [HIGH] CVE-2002-0677: CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory loca CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

CVE-2002-1621 [CRITICAL] CVE-2002-1621: Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers t Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.

CVE-2002-1619 [MEDIUM] CVE-2002-1619: Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of serv Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump).

CVE-2001-1079 [LOW] CVE-2001-1079: create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with worl create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which could allow a local user to delete key files and cause a denial of service.

CVE-2001-1557 [HIGH] CVE-2001-1557: Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges. Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges.

CVE-2001-1554 [MEDIUM] CVE-2001-1554: IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via Path Maximum Transmit Unit (PMTU) IP packets.

CVE-2001-1440 [CRITICAL] CVE-2001-1440: Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remo Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to the system.

CVE-2001-0797 [CRITICAL] CVE-2001-0797: Buffer overflow in login in various System V based operating systems allows remote attackers to exec Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

CVE-2001-0671 [CRITICAL] CVE-2001-0671: Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 all Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges.

CVE-2001-1095 [MEDIUM] CVE-2001-1095: Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r para Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter.

CVE-2001-1096 [MEDIUM] CVE-2001-1096: Buffer overflows in muxatmd in AIX 4 allows an attacker to cause a core dump and possibly execute co Buffer overflows in muxatmd in AIX 4 allows an attacker to cause a core dump and possibly execute code.

CVE-2001-0998 [MEDIUM] CVE-2001-0998: IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure in snmpd.

CVE-2001-0554 [CRITICAL] CWE-120 CVE-2001-0554: Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attack Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

CVE-2001-0533 [HIGH] CVE-2001-0533: Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileg Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable.

CVE-2001-0573 [MEDIUM] CVE-2001-0573: lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory.

CVE-2001-1080 [CRITICAL] CVE-2001-1080: diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain p diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.