Vulnerabilities > IBM > AIX > 5.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-02-05 | CVE-2008-0585 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3 sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allows local users to "alter the behavior of" this client by overwriting these files. | 6.6 |
| 2008-02-05 | CVE-2008-0584 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3 Multiple buffer overflows in bos.rte.control in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors related to the (1) swap, (2) swapoff, and (3) swapon programs. | 7.2 |
| 2008-01-25 | CVE-2007-5764 | Buffer Errors vulnerability in IBM AIX 5.2/5.3/6.1 Buffer overflow in the pioout program in printers.rte in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long command line option. | 7.2 |
| 2007-11-05 | CVE-2007-5805 | Link Following vulnerability in IBM AIX 5.2/5.3 cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create an arbitrary file, and enable world writability of this file, via a symlink attack involving use of the file's name as the argument. | 6.9 |
| 2007-11-05 | CVE-2007-5804 | Unspecified vulnerability in IBM AIX 5.2/5.3 cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create or overwrite an arbitrary file, and enable world writability of this file, by using the file's name as the argument. local ibm | 6.9 |
| 2007-11-05 | CVE-2007-4623 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM AIX 5.2/5.3 Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command. | 7.2 |
| 2007-11-05 | CVE-2007-4513 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM AIX 5.2/5.3 Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv. | 7.2 |
| 2007-11-05 | CVE-2007-4217 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM AIX 5.2/5.3 Stack-based buffer overflow in the domacro function in ftp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long parameter to a macro, as demonstrated by executing a macro via the '$' command. | 7.2 |
| 2007-09-10 | CVE-2007-4799 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.3 The perfstat kernel extension in bos.perf.perfstat in AIX 5.3 does not verify privileges when processing a SET call, which allows local users to cause a denial of service (system hang or crash) via unspecified SET operations. | 4.9 |
| 2007-09-10 | CVE-2007-4798 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3 Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname alias, as demonstrated by hostnames ending in "unix". | 6.6 |