This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ibm First view 1994-02-24
Product Aix Last view 2012-01-03
Version 3.2.5 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:ibm:aix

Activity : Overall

Related : CVE

  Date Alert Description
4 2012-01-03 CVE-2011-1384

The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file.

10 2010-08-30 CVE-2010-3187

Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.

5 2003-06-16 CVE-2003-0285

IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.

10 2002-12-31 CVE-2002-1690

Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY28225.

10 2002-12-31 CVE-2002-1689

Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow.

7.2 2000-12-10 CVE-2000-1222

AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.

10 2000-11-14 CVE-2000-0844

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

5 2000-05-24 CVE-2000-0441

Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.

10 1999-08-18 CVE-1999-0745

Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.

4.6 1999-05-06 CVE-1999-1079

Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program.

10 1999-02-17 CVE-1999-1405

snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.

5 1998-01-05 CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

10 1997-10-29 CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

7.2 1997-09-01 CVE-1999-0115

AIX bugfiler program allows local users to gain root access.

7.2 1997-07-21 CVE-1999-1208

Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long command line argument.

7.2 1997-05-26 CVE-1999-0064

Buffer overflow in AIX lquerylv program gives root access to local users.

7.5 1997-02-13 CVE-1999-0041

Buffer overflow in NLS (Natural Language Service).

5 1996-09-19 CVE-1999-0116

Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood.

7.2 1996-07-03 CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.2 1996-06-26 CVE-1999-0138

The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.

7.2 1994-07-20 CVE-1999-1552

dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

10 1994-05-23 CVE-1999-0113

Some implementations of rlogin allow root access if given a -froot parameter.

7.2 1994-02-24 CVE-1999-0338

AIX Licensed Program Product performance tools allow local users to gain root access.

CWE : Common Weakness Enumeration

%idName
33% (1) CWE-264 Permissions, Privileges, and Access Controls
33% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
33% (1) CWE-59 Improper Link Resolution Before File Access ('Link Following')

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-41 Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC-88 OS Command Injection
CAPEC-133 Try All Common Application Switches and Options

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
77689 IBM AIX Inventory Scout Unspecified Arbitrary File Deletion
77688 IBM AIX Inventory Scout Symlink Arbitrary File Manipulation
66576 IBM AIX FTP NLST Command Crafted Parameter Core Dump Password Hash Remote Dis...
55784 Axesstel MV 410R SYN Flood Remote DoS
21396 IBM AIX Unspecified Issue (IY28225)
21395 IBM AIX login Environment Variable Saturation Overflow
17963 IBM AIX sysback Path Subversion Privilege Escalation
17082 IBM AIX Performance Tools tprof -x Parameter Privilege Escalation
17081 IBM AIX Performance Tools svmon Unspecified Local Root Access
17080 IBM AIX Performance Tools stripnm Unspecified Local Root Access
17079 IBM AIX Performance Tools rmss Unspecified Local Root Access
17078 IBM AIX Performance Tools rmap Unspecified Local Root Access
17077 IBM AIX Performance Tools netpmon Unspecified Local Root Access
17076 IBM AIX Performance Tools lvedit Unspecified Local Root Access
17075 IBM AIX Performance Tools genld Unspecified Local Root Access
17074 IBM AIX Performance Tools genkld Unspecified Local Root Access
17073 IBM AIX Performance Tools genkex Unspecified Local Root Access
17072 IBM AIX Performance Tools fileplace Unspecified Local Root Access
14794 Multiple Unix Vendor locale subsystem Multiple Function Format String
14788 IBM AIX FTP Client Pipe Character Arbitrary Command Execution
10871 Perl suidperl UID Change Failure Privilege Escalation
10182 TCP/IP SYN Packets Saturation DoS
8018 IBM AIX ptrace setgid Privilege Escalation
8017 IBM AIX snap Shadowed Password File Disclosure
8010 IBM AIX DPS Server dpsexec Arbitrary Privileged File Modification

OpenVAS Exploits

id Description
2011-11-15 Name : SendMail Mail Relay Vulnerability
File : nvt/gb_sendmail_mail_relay_vuln.nasl
2009-03-23 Name : Mail relaying
File : nvt/smtp_relay.nasl

Snort® IPS/IDS

Date Description
2014-01-10 Unix rlogin froot parameter root access attempt
RuleID : 604-community - Type : PROTOCOL-SERVICES - Revision : 14
2014-01-10 Unix rlogin froot parameter root access attempt
RuleID : 604 - Type : PROTOCOL-SERVICES - Revision : 14
2014-01-10 AIX pdnsd overflow
RuleID : 1261-community - Type : SERVER-OTHER - Revision : 15
2014-01-10 AIX pdnsd overflow
RuleID : 1261 - Type : SERVER-OTHER - Revision : 15

Nessus® Vulnerability Scanner

id Description
2018-10-10 Name: An open SMTP relay is running on the host.
File: internal_smtp_relay_detection.nasl - Type: ACT_GATHER_INFO
2014-05-12 Name: The remote host contains a program that could allow a user to delete or manip...
File: invscout_2_2_0_19.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote AIX host is missing a security patch.
File: aix_IZ83252.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote AIX host is missing a security patch.
File: aix_IZ83274.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote AIX host is missing a security patch.
File: aix_IZ83275.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote AIX host is missing a security patch.
File: aix_IZ83276.nasl - Type: ACT_GATHER_INFO
2011-02-25 Name: The remote AIX host is missing a vendor-supplied security patch.
File: aix_U838020.nasl - Type: ACT_GATHER_INFO
2011-02-25 Name: The remote AIX host is missing a vendor-supplied security patch.
File: aix_U838225.nasl - Type: ACT_GATHER_INFO
2011-02-25 Name: The remote AIX host is missing a vendor-supplied security patch.
File: aix_U838600.nasl - Type: ACT_GATHER_INFO
2003-09-26 Name: An open SMTP relay is running on the remote host.
File: smtp_relay2.nasl - Type: ACT_GATHER_INFO
2002-08-26 Name: It is possible to connect to this host as 'root' without a password.
File: rlogin_froot.nasl - Type: ACT_ATTACK
1999-06-22 Name: An open SMTP relay is running on the remote host.
File: smtp_relay.nasl - Type: ACT_GATHER_INFO