Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm vios 2.2.1.4 vulnerabilities and exploits

(subscribe to this query)
632
VMScore
CVE-2013-3035
The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote malicious users to cause a denial of service (system hang) via a crafted packet to an IPv6 interface.
Ibm Aix 7.1Ibm Vios 2.2.1.4Ibm Aix 6.1
605
VMScore
CVE-2012-4845
The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows malicious users to bypass intended file-read restrictions by leveraging the setuid installation of the ftp executable file.
Ibm Aix 6.1Ibm Aix 7.1Ibm Vios 2.2.1.4
641
VMScore
CVE-2012-2200
The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges by entering a command in a .forward file in a home directory.
Ibm Aix 6.1Ibm Aix 7.1Ibm Vios 2.2.1.4
187
VMScore
CVE-2012-4833
fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line.
Ibm Vios 2.2.1.4Ibm Aix 7.1Ibm Aix 6.1
418
VMScore
CVE-2014-0930
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Ibm Vios 2.2.0.10Ibm Vios 2.2.0.11Ibm Aix 7.1Ibm Aix 6.1Ibm Vios 2.2.1.0Ibm Vios 2.2.1.1Ibm Vios 2.2.0.12Ibm Vios 2.2.0.13Ibm Aix 5.3Ibm Vios 2.2.2.0Ibm Vios 2.2.3.0Ibm Vios 2.2.1.3Ibm Vios 2.2.1.4
695
VMScore
CVE-2014-3977
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179.
Ibm Vios 2.2.1.8Ibm Vios 2.2.2.4Ibm Vios 2.2.1.1Ibm Vios 2.2.1.3Ibm Vios 2.2.3.3Ibm Aix 7.1Ibm Vios 2.2.3.2Ibm Vios 2.2.0.10Ibm Vios 2.2.1.4Ibm Aix 6.1Ibm Vios 2.2.0.13Ibm Vios 2.2.1.0Ibm Vios 2.2.2.5Ibm Vios 2.2.3.0Ibm Vios 2.2.0.11Ibm Vios 2.2.0.12Ibm Vios 2.2.1.9Ibm Vios 2.2.2.0
641
VMScore
CVE-2014-3074
The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.
Ibm Vios 2.2.0.12Ibm Vios 2.2.0.13Ibm Vios 2.2.1.9Ibm Vios 2.2.2.0Ibm Vios 2.2.1.3Ibm Vios 2.2.1.4Ibm Vios 2.2.3.2Ibm Vios 2.2.3.3Ibm Vios 2.2.1.0Ibm Vios 2.2.1.1Ibm Vios 2.2.2.4Ibm Vios 2.2.2.5Ibm Vios 2.2.3.0Ibm Vios 2.2.0.10Ibm Vios 2.2.0.11Ibm Vios 2.2.1.8Ibm Aix 7.1Ibm Aix 6.1
436
VMScore
CVE-2012-0723
The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which allows local users to cause a denial of service (system crash) via a crafted application.
Ibm Aix 5.3Ibm Aix 6.1Ibm Aix 7.1Ibm Vios 2.2.1.4
436
VMScore
CVE-2012-2192
The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service (system crash) via a crafted application that leverages the presence of a socket on the free list.
Ibm Aix 5.3Ibm Aix 6.1Ibm Aix 7.1Ibm Vios 2.2.1.4
445
VMScore
CVE-2012-4817
The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS prior to 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote malicious users to cause a denial of service via unspecified vectors.
Ibm Vios 2.2.1.3Ibm Vios 2.2.1.1Ibm Vios 2.1.2.12Ibm Vios 2.1.2.10Ibm Aix 5.3Ibm Aix 6.1Ibm Vios 2.2.0.12Ibm Vios 2.2.0.11Ibm Vios 1.5.2.1Ibm Vios 1.5.1.1Ibm Aix 7.1Ibm Vios 2.2.1.4Ibm Vios 2.2.0.10Ibm Vios 2.1.3.10Ibm Vios 2.1.2.13Ibm Vios 1.4.1.2Ibm Vios 2.2.1.0Ibm Vios 2.2.0.13Ibm Vios 2.1.0.0Ibm Vios 1.5.2.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook