# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2010-1039 |
134 |
|
Exec Code |
2010-05-20 |
2018-10-10 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name. |
2 |
CVE-2000-0844 |
264 |
|
Exec Code |
2000-11-14 |
2018-10-30 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. |
3 |
CVE-2000-0441 |
|
|
|
2000-05-24 |
2008-09-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems. |
4 |
CVE-1999-1589 |
|
|
+Priv |
1999-12-31 |
2008-09-05 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors. |
5 |
CVE-1999-1552 |
|
|
+Priv |
1994-07-20 |
2008-09-10 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges. |
6 |
CVE-1999-0745 |
|
|
Overflow |
1999-08-18 |
2008-09-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler. |
7 |
CVE-1999-0627 |
|
|
Exec Code |
1992-03-01 |
2008-09-09 |
0.0 |
None |
Remote |
Low |
Not required |
None |
None |
None |
The rexd service is running, which uses weak authentication that can allow an attacker to execute commands. |
8 |
CVE-1999-0513 |
|
|
DoS |
1998-01-05 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. |
9 |
CVE-1999-0345 |
|
|
DoS |
1997-01-01 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. |
10 |
CVE-1999-0337 |
|
|
+Priv |
1994-06-03 |
2008-09-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled. |
11 |
CVE-1999-0208 |
|
|
Exec Code |
1995-12-12 |
2008-09-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. |
12 |
CVE-1999-0131 |
|
|
DoS Overflow |
1996-09-11 |
2008-09-09 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. |
13 |
CVE-1999-0129 |
|
|
|
1996-12-03 |
2018-10-30 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. |
14 |
CVE-1999-0128 |
|
|
DoS |
1996-12-18 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. |
15 |
CVE-1999-0118 |
|
|
|
1998-11-01 |
2016-10-18 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
AIX infod allows local users to gain root access through an X display. |
16 |
CVE-1999-0117 |
|
|
|
1992-03-31 |
2008-09-09 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
AIX passwd allows local users to gain root access. |
17 |
CVE-1999-0115 |
|
|
|
1997-09-01 |
2008-09-09 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
AIX bugfiler program allows local users to gain root access. |
18 |
CVE-1999-0113 |
|
|
|
1994-05-23 |
2008-09-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Some implementations of rlogin allow root access if given a -froot parameter. |
19 |
CVE-1999-0111 |
|
|
|
1997-07-01 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
RIP v1 is susceptible to spoofing. |
20 |
CVE-1999-0101 |
|
|
Overflow |
1996-12-10 |
2008-09-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names. |
21 |
CVE-1999-0099 |
|
|
Overflow +Priv |
1995-10-19 |
2018-10-30 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. |
22 |
CVE-1999-0097 |
|
|
Exec Code |
1997-10-29 |
2018-10-30 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). |
23 |
CVE-1999-0086 |
|
|
|
1998-01-08 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
AIX routed allows remote users to modify sensitive files. |
24 |
CVE-1999-0078 |
|
|
Exec Code |
1996-04-18 |
2018-10-30 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. |
25 |
CVE-1999-0064 |
|
|
Overflow |
1997-05-26 |
2008-09-09 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in AIX lquerylv program gives root access to local users. |
26 |
CVE-1999-0046 |
|
|
Overflow |
1997-02-06 |
2018-10-30 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow of rlogin program using TERM environmental variable. |
27 |
CVE-1999-0040 |
|
|
Exec Code Overflow |
1997-05-01 |
2018-10-30 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. |
28 |
CVE-1999-0038 |
|
|
Exec Code Overflow |
1997-04-26 |
2018-10-30 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in xlock program allows local users to execute commands as root. |
29 |
CVE-1999-0023 |
|
|
Overflow +Priv |
1996-07-24 |
2018-10-30 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Local user gains root privileges via buffer overflow in rdist, via lookup() function. |
30 |
CVE-1999-0022 |
|
|
Overflow +Priv |
1996-07-03 |
2018-10-30 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Local user gains root privileges via buffer overflow in rdist, via expstr() function. |
31 |
CVE-1999-0019 |
|
|
|
1996-04-24 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
Delete or create a file via rpc.statd, due to invalid information. |
32 |
CVE-1999-0018 |
|
|
Overflow |
1997-12-05 |
2018-10-30 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Buffer overflow in statd allows root privileges. |
33 |
CVE-1999-0017 |
|
|
|
1997-12-10 |
2008-09-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. |