Vulnerabilities > IBM > AIX > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-02-13 | CVE-2006-0674 | Local Buffer Overflow vulnerability in IBM AIX ARP Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument. | 4.6 |
| 2005-07-12 | CVE-2005-2232 | Local Buffer Overflow vulnerability in IBM AIX 5.1/5.2/5.3 Buffer overflow in invscout in IBM AIX 5.1.0 through 5.3.0 might allow local users to execute arbitrary code via a long command line argument. | 4.6 |
| 2004-12-31 | CVE-2004-2697 | Race Condition vulnerability in IBM AIX 4.3.3/5.1/5.1L The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). | 6.9 |
| 2004-12-31 | CVE-2004-2634 | Console Commands Symbolic Link vulnerability in Multiple IBM AIX The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack on temporary files via unknown attack vectors. | 6.2 |
| 2004-01-20 | CVE-2003-0696 | Unspecified vulnerability in IBM AIX 5.1/5.2 The getipnodebyname() API in AIX 5.1 and 5.2 does not properly close sockets, which allows attackers to cause a denial of service (resource exhaustion). | 5.0 |
| 2003-12-15 | CVE-2003-0914 | ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. | 4.3 |
| 2003-06-16 | CVE-2003-0285 | Unspecified vulnerability in IBM AIX IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail. | 5.0 |
| 2003-03-31 | CVE-2002-1551 | Denial-Of-Service vulnerability in IBM AIX Buffer overflow in nslookup in IBM AIX may allow attackers to cause a denial of service or execute arbitrary code. | 4.6 |
| 2003-03-31 | CVE-2002-1550 | Unspecified vulnerability in IBM AIX dump_smutil.sh in IBM AIX allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 4.6 |
| 2002-10-28 | CVE-2002-1201 | Remote Empty TCP Flag Flood Denial Of Service vulnerability in IBM AIX 4.3.3/5 IBM AIX 4.3.3 and AIX 5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a flood of malformed TCP packets without any flags set, which prevents AIX from releasing the associated memory buffers. | 5.0 |