Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm vios 2.2.3.3 vulnerabilities and exploits

(subscribe to this query)
695
VMScore
CVE-2014-3977
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179.
Ibm Vios 2.2.1.8Ibm Vios 2.2.2.4Ibm Vios 2.2.1.1Ibm Vios 2.2.1.3Ibm Vios 2.2.3.3Ibm Aix 7.1Ibm Vios 2.2.3.2Ibm Vios 2.2.0.10Ibm Vios 2.2.1.4Ibm Aix 6.1Ibm Vios 2.2.0.13Ibm Vios 2.2.1.0Ibm Vios 2.2.2.5Ibm Vios 2.2.3.0Ibm Vios 2.2.0.11Ibm Vios 2.2.0.12Ibm Vios 2.2.1.9Ibm Vios 2.2.2.0
641
VMScore
CVE-2014-3074
The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.
Ibm Vios 2.2.0.12Ibm Vios 2.2.0.13Ibm Vios 2.2.1.9Ibm Vios 2.2.2.0Ibm Vios 2.2.1.3Ibm Vios 2.2.1.4Ibm Vios 2.2.3.2Ibm Vios 2.2.3.3Ibm Vios 2.2.1.0Ibm Vios 2.2.1.1Ibm Vios 2.2.2.4Ibm Vios 2.2.2.5Ibm Vios 2.2.3.0Ibm Vios 2.2.0.10Ibm Vios 2.2.0.11Ibm Vios 2.2.1.8Ibm Aix 7.1Ibm Aix 6.1
725
VMScore
CVE-2014-8904
lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.
Ibm Vios 2.2.0.10Ibm Vios 2.2.1.4Ibm Vios 2.2.1.5Ibm Vios 2.2.2.3Ibm Vios 2.2.2.4Ibm Vios 2.2.0.13Ibm Vios 2.2.1.0Ibm Vios 2.2.1.9Ibm Vios 2.2.2.0Ibm Vios 2.2.3.1Ibm Vios 2.2.3.2Ibm Vios 2.2.0.11Ibm Vios 2.2.0.12Ibm Vios 2.2.1.6Ibm Vios 2.2.1.7Ibm Vios 2.2.1.8Ibm Vios 2.2.2.5Ibm Vios 2.2.3.0Ibm Vios 2.2.1.1Ibm Vios 2.2.1.3Ibm Vios 2.2.2.1Ibm Vios 2.2.2.2
383
VMScore
CVE-2016-0281
The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, when the jumbo_frames feature is not enabled, allows remote malicious users to cause a denial of service (FC1763 or FC5899 adapter crash) via crafted packets.
Ibm Aix 7.2Ibm Aix 5.3Ibm Aix 6.1Ibm Aix 7.1Ibm Vios 2.2.3.4Ibm Vios 2.2.2.2Ibm Vios 2.2.2.1Ibm Vios 2.2.1.4Ibm Vios 2.2.1.3Ibm Vios 2.2.0.13Ibm Vios 2.2.0.12Ibm Vios 2.2.3.3Ibm Vios 2.2.3.2Ibm Vios 2.2.2.0Ibm Vios 2.2.1.9Ibm Vios 2.2.1.1Ibm Vios 2.2.0.11Ibm Vios 2.2.3.1Ibm Vios 2.2.3.0Ibm Vios 2.2.2.5Ibm Vios 2.2.1.8Ibm Vios 2.2.1.7
383
VMScore
CVE-2016-0266
IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle malicious users to obtain sensitive information via unspecified vectors.
Ibm Vios 2.2.3.60Ibm Vios 2.2.3.52Ibm Vios 2.2.3.51Ibm Vios 2.2.0.12Ibm Vios 2.2.0.13Ibm Vios 2.2.1.7Ibm Vios 2.2.1.8Ibm Vios 2.2.3.0Ibm Vios 2.2.3.1Ibm Vios 2.2.4.21Ibm Vios 2.2.4.10Ibm Aix 7.1Ibm Aix 7.2Ibm Vios 2.2.1.3Ibm Vios 2.2.1.4Ibm Vios 2.2.2.1Ibm Vios 2.2.2.2Ibm Vios 2.2.3.4Ibm Aix 5.3Ibm Vios 2.2.4.0Ibm Vios 2.2.3.70Ibm Vios 2.2.0.10
725
VMScore
CVE-2016-8972
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011.
Ibm Aix 7.1Ibm Aix 7.2Ibm Aix 6.1Ibm Vios 2.2.0.11Ibm Vios 2.2.0.12Ibm Vios 2.2.1.6Ibm Vios 2.2.1.7Ibm Vios 2.2.2.6Ibm Vios 2.2.2.70Ibm Vios 2.2.3.0Ibm Vios 2.2.3.52Ibm Vios 2.2.3.60Ibm Vios 2.2.4.23Ibm Vios 2.2.4.30Ibm Vios 2.2.0.13Ibm Vios 2.2.1.0Ibm Vios 2.2.1.8Ibm Vios 2.2.2.0Ibm Vios 2.2.3.1Ibm Vios 2.2.3.2Ibm Vios 2.2.3.70Ibm Vios 2.2.3.80
725
VMScore
CVE-2016-6079
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053.
Ibm Aix 6.1Ibm Aix 7.1Ibm Aix 7.2Ibm Aix 5.3Ibm Vios 2.2.1.0Ibm Vios 2.2.1.1Ibm Vios 2.2.2.1Ibm Vios 2.2.2.2Ibm Vios 2.2.3.2Ibm Vios 2.2.3.3Ibm Vios 2.2.3.80Ibm Vios 2.2.4.0Ibm Vios 2.2.0.10Ibm Vios 2.2.0.11Ibm Vios 2.2.1.5Ibm Vios 2.2.1.6Ibm Vios 2.2.1.7Ibm Vios 2.2.2.6Ibm Vios 2.2.2.70Ibm Vios 2.2.3.51Ibm Vios 2.2.3.52Ibm Vios 2.2.4.22
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook