IBM : Security Vulnerabilities, CVEs, (Overflow)

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

Buffer overflow in statd allows root privileges.

Buffer overflow in University of Washington's implementation of IMAP and POP servers.

Buffer overflow of rlogin program using TERM environmental variable.

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.

Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.

Buffer overflow in AIX ftpd in the libc library.

Buffer overflow in IBM Net.Data db2www CGI program allows remote attackers to execute arbitrary commands via a long PATH_INFO environmental variable.

Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header.

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.

Buffer overflow in pioout on AIX 4.3.3.

mail and mailx in AIX 4.3.3 core dump when called with a very long argument, an indication of a buffer overflow.

namerslv in AIX 4.3.3 core dumps when called with a very long argument, possibly as a result of a buffer overflow.

Buffer overflow in uucp in AIX 4.3.3.

Buffer overflow in lsmcode in AIX 4.3.3.

Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root.

Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.

Buffer overflow in lscfg of unknown versions of AIX has unknown impact.

Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow.

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

Buffer overflow in IBM Tivoli Firewall Toolbox (TFST) 1.2 allows remote attackers to execute arbitrary code via unknown vectors.