Ibm Aix vulnerabilities

CVE-1999-0903 [HIGH] CVE-1999-0903: genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports gre genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.

CVE-1999-1583 [HIGH] CVE-1999-1583: Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long host Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument.

CVE-1999-1013 [HIGH] CVE-1999-1013: named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to ga named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file.

CVE-1999-0687 [HIGH] CVE-1999-0687: The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execut The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

CVE-1999-0691 [HIGH] CVE-1999-0691: Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

CVE-1999-0745 [CRITICAL] CVE-1999-0745: Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.

CVE-1999-0694 [LOW] CVE-1999-0694: Denial of service in AIX ptrace system call allows local users to crash the system. Denial of service in AIX ptrace system call allows local users to crash the system.

CVE-1999-1079 [MEDIUM] CVE-1999-1079: Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid pr Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.

CVE-1999-1405 [CRITICAL] CVE-1999-1405: snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.

CVE-1999-0118 [HIGH] CVE-1999-0118: AIX infod allows local users to gain root access through an X display. AIX infod allows local users to gain root access through an X display.

CVE-1999-0088 [CRITICAL] CVE-1999-0088: IRIX and AIX automountd services (autofsd) allow remote users to execute root commands. IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.

CVE-1999-1574 [HIGH] CVE-1999-1574: Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long input strings."

CVE-1999-1480 [LOW] CVE-1999-1480: (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink atta (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.

CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

CVE-1999-0011 [MEDIUM] CWE-1067 CVE-1999-0011: Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

CVE-1999-0010 [MEDIUM] CVE-1999-0010: Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

CVE-1999-0003 [CRITICAL] CVE-1999-0003: Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

CVE-1999-1075 [MEDIUM] CVE-1999-1075: inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd.

CVE-1999-1486 [LOW] CVE-1999-1486: sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack.

CVE-1999-0087 [MEDIUM] CVE-1999-0087: Denial of service in AIX telnet can freeze a system and prevent users from accessing the server. Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.