Vulnerabilities > IBM > AIX > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-08-12 | CVE-2002-0790 | Local Security vulnerability in IBM AIX clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges. | 2.1 |
| 2002-02-13 | CVE-2001-1079 | Denial-Of-Service vulnerability in IBM AIX 3.2.0 create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which could allow a local user to delete key files and cause a denial of service. | 3.6 |
| 2000-11-14 | CVE-2000-0873 | Unspecified vulnerability in IBM AIX netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities. | 2.1 |
| 2000-01-10 | CVE-2000-0080 | Unspecified vulnerability in IBM AIX 4.3.2 AIX techlibss allows local users to overwrite files via a symlink attack. | 2.1 |
| 1999-12-31 | CVE-1999-1117 | Unspecified vulnerability in IBM AIX 4.1/4.2 lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter. | 2.1 |
| 1999-11-10 | CVE-1999-0851 | Denial of service in BIND named via naptr. | 2.1 |
| 1999-08-11 | CVE-1999-0694 | Unspecified vulnerability in IBM AIX 4.2/4.3 Denial of service in AIX ptrace system call allows local users to crash the system. | 2.1 |
| 1998-06-11 | CVE-1999-1480 | Unspecified vulnerability in IBM AIX 4.3 (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | 1.2 |
| 1998-02-25 | CVE-1999-1486 | Unspecified vulnerability in IBM AIX sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack. | 1.2 |
| 1997-03-05 | CVE-1999-1408 | Denial of Service vulnerability in Multiple Vendor connect() Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost. | 2.1 |