Buffer overflow in rpc.yppasswdd (yppasswd server) in AIX allows attackers to gain unauthorized access via a long string. NOTE: due to lack of details in the vendor advisory, it is not clear if this is the same issue as CVE-2001-0779.
CVSS Score
7.5
EPSS Score
0.006
Published
2001-12-31
Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error.
CVSS Score
10.0
EPSS Score
0.006
Published
2001-08-31
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.
CVSS Score
7.2
EPSS Score
0.002
Published
2000-12-10
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVSS Score
10.0
EPSS Score
0.009
Published
2000-11-14
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
CVSS Score
5.0
EPSS Score
0.005
Published
2000-05-24
Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.
CVSS Score
10.0
EPSS Score
0.187
Published
1999-08-18
Vacation program allows command execution by remote users through a sendmail command.
CVSS Score
7.5
EPSS Score
0.029
Published
1998-11-16
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
CVSS Score
5.0
EPSS Score
0.256
Published
1998-01-05
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).
CVSS Score
10.0
EPSS Score
0.011
Published
1997-10-29
AIX bugfiler program allows local users to gain root access.
CVSS Score
7.2
EPSS Score
0.005
Published
1997-09-01