Vulnerabilities > IBM > AIX > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-08-26 | CVE-2013-6335 | Improper Preservation of Permissions vulnerability in IBM Tivoli Storage Manager The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations. | 3.3 |
2012-10-01 | CVE-2012-4833 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX and Vios fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line. | 2.1 |
2011-11-24 | CVE-2011-4160 | Local Unauthorized Access vulnerability in HP Operations Agent and Performance Agent Unspecified vulnerability in HP Operations Agent 11.00 and Performance Agent 4.73 and 5.0 on AIX, HP-UX, Linux, and Solaris allows local users to bypass intended directory-access restrictions via unknown vectors. | 3.2 |
2011-10-05 | CVE-2011-3982 | Resource Management Errors vulnerability in IBM AIX 6.1/7.1 The Fibre Channel driver for QLogic adapters in IBM AIX 6.1 and 7.1 does not properly handle DMA resource limitations, which allows local users to cause a denial of service (system hang) via vectors that generate a large amount of DMA I/O, related to a deadlock in timer processing across CPUs. | 2.1 |
2011-03-22 | CVE-2009-5062 | Resource Management Errors vulnerability in IBM Lotus Quickr 8.1 IBM Lotus Quickr 8.1 before 8.1.0.15 services for Lotus Domino on AIX allows remote authenticated users to cause a denial of service (daemon crash) by subscribing to an Atom feed, aka SPR JRIE7VKMP9. | 3.5 |
2010-09-16 | CVE-2010-3406 | Local Privilege Escalation and Security Bypass vulnerability in IBM AIX 5.3 Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM AIX 5.3 allows local users to leverage system group membership and delete files via unknown vectors. | 1.7 |
2009-04-14 | CVE-2009-1292 | Information Exposure vulnerability in IBM Rational Clearcase UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x before 7.0.1.4, and 7.1.x before 7.1.0.1 on Linux and AIX places a username and password on the command line, which allows local users to obtain credentials by listing the process. | 2.1 |
2008-01-10 | CVE-2007-6680 | Unspecified vulnerability in IBM AIX 6.1 Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchk_block_write function, which might allow local users to modify trusted files, related to an error in the support for links in the TSD_FILES_LOCK policy. | 2.1 |
2006-09-27 | CVE-2006-5004 | Local Arbitrary File Overwrite vulnerability in IBM AIX 5.2.0/5.3.0 Unspecified vulnerability in the rdist command in IBM AIX 5.2.0 and 5.3.0 allows local users to overwrite arbitrary files via unspecified vectors. | 2.1 |
2006-04-19 | CVE-2006-1247 | Link Following vulnerability in IBM AIX rm_mlcache_file in bos.rte.install in AIX 5.1.0 through 5.3.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 3.3 |