CVE-2004-2697
- EPSS 0.59%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:10
The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). NOTE: this might be related to CVE-2006-5002.
CVE-2004-1329
- EPSS 3.27%
- Veröffentlicht 20.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:29
Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1 through 5.3 allows local users to execute arbitrary programs by modifying the DIAGNOSTICS environment variable to point...
- EPSS 1.68%
- Veröffentlicht 23.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:14
AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.
CVE-2004-0828
- EPSS 0.34%
- Veröffentlicht 03.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:28
The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.
CVE-2004-0544
- EPSS 1.22%
- Veröffentlicht 06.08.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:51
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands.
CVE-2004-0545
- EPSS 0.35%
- Veröffentlicht 06.08.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:51
LVM for AIX 5.1 and 5.2 allows local users to overwrite arbitrary files via a symlink attack.
- EPSS 10.58%
- Veröffentlicht 04.05.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:30
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.
CVE-2003-0257
- EPSS 0.38%
- Veröffentlicht 15.04.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:51
Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges.
- EPSS 2.84%
- Veröffentlicht 29.03.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:41
Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors.
CVE-2003-1018
- EPSS 0.35%
- Veröffentlicht 29.03.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:22
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors.