Vulnerabilities > IBM > AIX > 5.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-05-08 | CVE-2014-0930 | Unspecified vulnerability in IBM AIX and Vios The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation. local ibm | 4.7 |
| 2012-09-14 | CVE-2012-4817 | Unspecified vulnerability in IBM AIX and Vios The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS before 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote attackers to cause a denial of service via unspecified vectors. | 5.0 |
| 2012-07-30 | CVE-2012-0723 | Improper Input Validation vulnerability in IBM AIX and Vios The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which allows local users to cause a denial of service (system crash) via a crafted application. | 4.9 |
| 2012-06-22 | CVE-2012-2179 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.3/6.1/7.1 libodm.a in IBM AIX 5.3, 6.1, and 7.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | 6.9 |
| 2012-06-20 | CVE-2012-2192 | Resource Management Errors vulnerability in IBM AIX and Vios The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service (system crash) via a crafted application that leverages the presence of a socket on the free list. | 4.9 |
| 2012-05-04 | CVE-2012-0745 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX and Vios The getpwnam function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.1.0.10 through 2.2.1.3 does not properly interact with customer-extended LDAP user filtering, which allows local users to gain privileges via unspecified vectors. | 7.2 |
| 2012-03-02 | CVE-2011-1385 | Resource Management Errors vulnerability in IBM AIX and Vios IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.1.x and 2.2.x, allows remote attackers to cause a denial of service (system crash) via an ICMP Echo Reply packet that contains 1 in the Identifier field, a different vulnerability than CVE-2012-0194. | 7.8 |
| 2012-02-06 | CVE-2012-0194 | Denial of Service vulnerability in IBM AIX 5.3/6.1/7.1 The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecified series of packets. network ibm | 7.1 |
| 2012-01-04 | CVE-2011-1384 | Link Following vulnerability in IBM Invscout.Rte The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file. | 4.0 |
| 2010-09-16 | CVE-2010-3406 | Local Privilege Escalation and Security Bypass vulnerability in IBM AIX 5.3 Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM AIX 5.3 allows local users to leverage system group membership and delete files via unknown vectors. | 1.7 |