This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:ibm:aix:5.2
Detail
VendorIbmFirst view 2003-03-03
ProductAixLast view2010-08-30
Version5.2TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:ibm:aix

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
102010-08-30CVE-2010-3187NetworkLowNone Requ...
102010-05-20CVE-2010-1039NetworkLowNone Requ...
102009-10-15CVE-2009-3699NetworkLowNone Requ...
9.32009-08-10CVE-2009-2727NetworkMediumNone Requ...
7.22009-04-21CVE-2009-1355LocalLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.22009-01-30CVE-2009-0370LocalLowNone Requ...
7.22008-09-10CVE-2008-4018LocalLowNone Requ...
7.22008-06-02CVE-2008-2515LocalLowNone Requ...
4.62008-06-02CVE-2008-2514LocalLowNone Requ...
7.22008-06-02CVE-2008-2513LocalLowNone Requ...
7.22008-03-31CVE-2008-1601LocalLowNone Requ...
7.22008-03-31CVE-2008-1600LocalLowNone Requ...
7.22008-03-31CVE-2008-1599LocalLowNone Requ...
7.22008-03-31CVE-2008-1596LocalLowNone Requ...
4.92008-03-31CVE-2008-1595LocalLowNone Requ...
4.92008-03-31CVE-2008-1594LocalLowNone Requ...
7.22008-03-31CVE-2008-1593LocalLowNone Requ...
4.92008-02-04CVE-2008-0589LocalLowNone Requ...
7.22008-02-04CVE-2008-0588LocalLowNone Requ...
7.22008-02-04CVE-2008-0587LocalLowNone Requ...
7.22008-02-04CVE-2008-0586LocalLowNone Requ...
6.62008-02-04CVE-2008-0585LocalLowNone Requ...
7.22008-02-04CVE-2008-0584LocalLowNone Requ...
7.22008-01-24CVE-2007-5764LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
57% (22)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
28% (11)CWE-264Permissions, Privileges, and Access Controls
5% (2)CWE-59Improper Link Resolution Before File Access ('Link Following')
2% (1)CWE-200Information Exposure
2% (1)CWE-189Numeric Errors
Hide | Show 1 More...
%idName
2% (1)CWE-134Uncontrolled Format String

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-69Target Programs with Elevated Privileges
CAPEC-104Cross Zone Scripting

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:10803Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed wi...
oval:org.mitre.oval:def:603Sendmail BO in prescan Function
oval:org.mitre.oval:def:572Sendmail BO in Prescan Function
oval:org.mitre.oval:def:2975Sendmail prescan function Buffer Overflow
oval:org.mitre.oval:def:5616AIX pioout buffer overflow
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:11697AIX ftpd buffer overflow vulnerability.
oval:org.mitre.oval:def:5744AIX swap commands buffer overflow
oval:org.mitre.oval:def:5572AIX utape buffer overflow
oval:org.mitre.oval:def:5684IBM AIX Kernel Buffer Overflow Lets Local Users Gain Elevated Privileges or D...
oval:org.mitre.oval:def:12103AIX rpc.pcnfsd integer overflow vulnerability.
oval:org.mitre.oval:def:11986HP-UX Running ONCplus rpc.pcnfsd, Remote Denial of Service (DoS), Increase in...
oval:org.mitre.oval:def:5566IBM AIX lsmcode Environment Variable Bug Lets Local Users Gain Root Privileges
oval:org.mitre.oval:def:5470IBM AIX buffer overflow in chcon command has unspecified impact
oval:org.mitre.oval:def:5321IBM AIX Multiple Privilege Escalation and Security Bypass Vulnerabilities
oval:org.mitre.oval:def:230xdrmem_bytes() Integer Overflow Vulnerability
oval:org.mitre.oval:def:6402Stack-based buffer overflow in muxatmd.
oval:org.mitre.oval:def:5497IBM AIX Buffer Overflow in 'reboot' Command Lets Local Users Execute Arbitrar...
oval:org.mitre.oval:def:5686AIX uspchrp buffer overflow
oval:org.mitre.oval:def:1436Solaris CDE DTLogin XDMCP Parser Remote Double Free Vulnerability
oval:org.mitre.oval:def:595Potential BO in Ruleset Parsing for Sendmail
oval:org.mitre.oval:def:3606Sendmail Ruleset Parsing Buffer Overflow
oval:org.mitre.oval:def:5629IBM AIX Buffer Overflow in errpt Command May Let Local Users Gain Elevated Pr...
oval:org.mitre.oval:def:5424IBM AIX Input Validation Flaw in iostat Command Lets Local Users Gain Root Pr...
oval:org.mitre.oval:def:5468IBM AIX 'nddstat' Commands Let Local Users Gain Root Privileges
oval:org.mitre.oval:def:5434IBM AIX Multiple Privilege Escalation and Security Bypass Vulnerabilities

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
66576IBM AIX FTP NLST Command Crafted Parameter Core Dump Password Hash Remote Dis...
66254IBM AIX printers.rte pioout Unspecified Command-Line Option Local Overflow
65506IBM AIX rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow
65505IBM VIOS rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow
65504HP-UX NFS/ONCplus rpc.pcnfsd Unspecified Log Function Crafted RPC Request Rem...
Hide | Show 20 More...
idDescription
64729IRIX rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow
60454dtterm Window Title Escape Sequence Arbitrary Command Execution
58726IBM AIX libcsa.a Calendar Manager Service Daemon (rpc.cmsd) Remote Procedure ...
55151IBM AIX ToolTalk Library (libtt.a) _tt_internal_realpath Function Overflow
53719IBM AIX muxatmd setuid Failure Local Overflow
52606IBM AIX rmsock / rmsock64 Function Log File Creation Arbitrary File Append
47911IBM AIX swcons Command Local Privilege Escalation
45637IBM AIX /usr/lib/boot/unix_up Local Overflow
45636IBM AIX /usr/lib/boot/unix_mp Local Overflow
45635IBM AIX /usr/lib/boot/unix_64 Local Overflow
45634IBM AIX /usr/bin/errpt Local Overflow
45633IBM AIX /usr/bin/iostat Environment Variable Handling Local Privilege Escalation
43136IBM AIX /usr/sbin/lsmcode Local Privilege Escalation
43134IBM AIX nddstat /usr/sbin/tokstat Local Privilege Escalation
43133IBM AIX nddstat /usr/sbin/hdlcstat Local Privilege Escalation
43132IBM AIX nddstat /usr/sbin/fddistat Local Privilege Escalation
43131IBM AIX nddstat /usr/sbin/entstat Local Privilege Escalation
43130IBM AIX nddstat /usr/sbin/atmstat Local Privilege Escalation
43126IBM AIX Hard Link File Modification Trusted Execution Failure
43125IBM AIX proc Filesystem Permission Weakness Local Information Disclosure

ExploitDB Exploits

idDescription
4612IBM AIX <= 5.3.0 - setlocale() Local Privilege Escalation Exploit

OpenVAS Exploits

idDescription
2011-11-15Name : SendMail Mail Relay Vulnerability
File : nvt/gb_sendmail_mail_relay_vuln.nasl
2010-05-28Name : HP-UX Update for ONCPlus HPSBUX02523
File : nvt/gb_hp_ux_HPSBUX02523.nasl
2009-10-10Name : SLES9: Security update for Perl
File : nvt/sles9p5013510.nasl
2009-05-05Name : HP-UX Update for sendmail HPSBUX00281
File : nvt/gb_hp_ux_HPSBUX00281.nasl
2009-05-05Name : HP-UX Update for dtterm HPSBUX00309
File : nvt/gb_hp_ux_HPSBUX00309.nasl
Hide | Show 6 More...
idDescription
2008-09-24Name : Gentoo Security Advisory GLSA 200502-13 (Perl)
File : nvt/glsa_200502_13.nasl
2008-09-04Name : FreeBSD Ports: perl
File : nvt/freebsd_perl.nasl
2008-01-17Name : Debian Security Advisory DSA 266-1 (krb5)
File : nvt/deb_266_1.nasl
2008-01-17Name : Debian Security Advisory DSA 272-1 (dietlibc)
File : nvt/deb_272_1.nasl
2008-01-17Name : Debian Security Advisory DSA 282-1 (glibc)
File : nvt/deb_282_1.nasl
2008-01-17Name : Debian Security Advisory DSA 384-1 (sendmail)
File : nvt/deb_384_1.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2010-A-0073Multiple Vendor RPC Integer Overflow Vulnerability
Severity : Category I - VMSKEY : V0024202

Snort® IPS/IDS

DateDescription
2014-01-10RCPT TO overflow
RuleID : 654-community - Type : SERVER-MAIL - Revision : 28
2014-01-10RCPT TO overflow
RuleID : 654 - Type : SERVER-MAIL - Revision : 28
2016-09-29XMDCP double-free attempt
RuleID : 39936 - Type : OS-SOLARIS - Revision : 2
2016-03-14XMDCP double-free attempt
RuleID : 37511 - Type : OS-SOLARIS - Revision : 2
2014-01-10Sendmail RCPT TO prescan too long addresses overflow
RuleID : 2270-community - Type : SERVER-MAIL - Revision : 18
Hide | Show 11 More...
DateDescription
2014-01-10Sendmail RCPT TO prescan too long addresses overflow
RuleID : 2270 - Type : SERVER-MAIL - Revision : 18
2014-01-10CMSD UDP CMSD_CREATE array buffer overflow attempt
RuleID : 2094-community - Type : PROTOCOL-RPC - Revision : 18
2014-01-10CMSD UDP CMSD_CREATE array buffer overflow attempt
RuleID : 2094 - Type : PROTOCOL-RPC - Revision : 18
2014-01-10portmap proxy integer overflow attempt TCP
RuleID : 2093-community - Type : PROTOCOL-RPC - Revision : 13
2014-01-10portmap proxy integer overflow attempt TCP
RuleID : 2093 - Type : PROTOCOL-RPC - Revision : 13
2014-01-10portmap proxy integer overflow attempt UDP
RuleID : 2092-community - Type : PROTOCOL-RPC - Revision : 14
2014-01-10portmap proxy integer overflow attempt UDP
RuleID : 2092 - Type : PROTOCOL-RPC - Revision : 14
2014-01-10CMSD UDP CMSD_CREATE buffer overflow attempt
RuleID : 1907-community - Type : PROTOCOL-RPC - Revision : 18
2014-01-10CMSD UDP CMSD_CREATE buffer overflow attempt
RuleID : 1907 - Type : PROTOCOL-RPC - Revision : 18
2014-01-10RCPT TO overflow
RuleID : 18574 - Type : SERVER-MAIL - Revision : 6
2014-01-10AIX ttdbserv function 15 buffer overflow attempt
RuleID : 16285 - Type : PROTOCOL-RPC - Revision : 6

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-10-10Name : An open SMTP relay is running on the host.
File : internal_smtp_relay_detection.nasl - Type : ACT_GATHER_INFO
2015-01-19Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_perl-58_20131015.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U804573.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U804752.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U805035.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U477512.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U477521.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U477539.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U810245.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U477911.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U477978.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U817348.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U497412.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U499696.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U800632.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U800638.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U800640.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U807822.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U809463.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U817702.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U811923.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U816674.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U810821.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U815015.nasl - Type : ACT_GATHER_INFO
2013-03-13Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U808257.nasl - Type : ACT_GATHER_INFO