Vulnerabilities > IBM > AIX > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-06 | CVE-2001-0671 | Remote Security vulnerability in AIX 4.3/5.1 Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges. | 10.0 |
| 2001-08-31 | CVE-2001-1061 | Unspecified vulnerability in IBM AIX Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error. | 10.0 |
| 2001-08-14 | CVE-2001-0554 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. | 10.0 |
| 2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
| 1999-11-10 | CVE-1999-0835 | Denial of service in BIND named via malformed SIG records. | 10.0 |
| 1999-09-28 | CVE-1999-0789 | Unspecified vulnerability in IBM AIX 4.3/4.3.1/4.3.2 Buffer overflow in AIX ftpd in the libc library. | 10.0 |
| 1999-08-18 | CVE-1999-0745 | Unspecified vulnerability in IBM AIX Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler. | 10.0 |
| 1999-02-17 | CVE-1999-1405 | Unspecified vulnerability in IBM AIX snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. | 10.0 |
| 1998-04-08 | CVE-1999-0009 | Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. | 10.0 |
| 1998-04-08 | CVE-1999-0011 | Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer. | 10.0 |