Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Aix  Security Vulnerabilities
CVE-2007-1086
Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access."
CVSS Score
7.2
EPSS Score
0.001
Published
2007-02-23
CVE-2006-7034
SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2007-02-23
CVE-2007-1043
Ezboo webstats, possibly 3.0.3, allows remote attackers to bypass authentication and gain access via a direct request to (1) update.php and (2) config.php.
CVSS Score
7.5
EPSS Score
0.06
Published
2007-02-21
CVE-2007-0978
Buffer overflow in swcons in IBM AIX 5.3 allows local users to gain privileges via long input data.
CVSS Score
7.2
EPSS Score
0.001
Published
2007-02-16
CVE-2007-0670
Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the "r-commands", possibly including (1) rdist, (2) rsh, (3) rcp, (4) rsync, and (5) rlogin.
CVSS Score
4.6
EPSS Score
0.001
Published
2007-02-03
CVE-2007-0618
Unspecified vulnerability in (1) pop3d, (2) pop3ds, (3) imapd, and (4) imapds in IBM AIX 5.3.0 has unspecified impact and attack vectors, involving an "authentication vulnerability."
CVSS Score
7.5
EPSS Score
0.01
Published
2007-01-31
CVE-2007-0392
IBM AIX 5.3 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
CVSS Score
4.6
EPSS Score
0.001
Published
2007-01-19
CVE-2006-6914
Unspecified vulnerability in ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote attackers to obtain sensitive information, including passwords, via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.005
Published
2006-12-31
CVE-2006-6915
ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified vectors. NOTE: some details were obtained from third party sources.
CVSS Score
4.0
EPSS Score
0.009
Published
2006-12-31
CVE-2006-5003
Unspecified vulnerability in the named8 command in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.0
Published
2006-09-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved