Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm vios 2.2.1.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4833
fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line.
Ibm Vios 2.2.1.4
Ibm Aix 7.1
Ibm Aix 6.1
NA
CVE-2012-4845
The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows malicious users to bypass intended file-read restrictions by leveraging the setuid installation of the ftp executable file.
Ibm Aix 6.1
Ibm Aix 7.1
Ibm Vios 2.2.1.4
NA
CVE-2012-2200
The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges by entering a command in a .forward file in a home directory.
Ibm Aix 6.1
Ibm Aix 7.1
Ibm Vios 2.2.1.4
NA
CVE-2013-3035
The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote malicious users to cause a denial of service (system hang) via a crafted packet to an IPv6 interface.
Ibm Aix 7.1
Ibm Vios 2.2.1.4
Ibm Aix 6.1
NA
CVE-2014-0930
The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.
Ibm Vios 2.2.0.10
Ibm Vios 2.2.0.11
Ibm Aix 7.1
Ibm Aix 6.1
Ibm Vios 2.2.1.0
Ibm Vios 2.2.1.1
Ibm Vios 2.2.0.12
Ibm Vios 2.2.0.13
Ibm Aix 5.3
Ibm Vios 2.2.2.0
Ibm Vios 2.2.3.0
Ibm Vios 2.2.1.3
Ibm Vios 2.2.1.4
NA
CVE-2012-2192
The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service (system crash) via a crafted application that leverages the presence of a socket on the free list.
Ibm Aix 5.3
Ibm Aix 6.1
Ibm Aix 7.1
Ibm Vios 2.2.1.4
NA
CVE-2012-0723
The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which allows local users to cause a denial of service (system crash) via a crafted application.
Ibm Aix 5.3
Ibm Aix 6.1
Ibm Aix 7.1
Ibm Vios 2.2.1.4
NA
CVE-2014-3074
The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.
Ibm Vios 2.2.0.12
Ibm Vios 2.2.0.13
Ibm Vios 2.2.1.9
Ibm Vios 2.2.2.0
Ibm Vios 2.2.1.3
Ibm Vios 2.2.1.4
Ibm Vios 2.2.3.2
Ibm Vios 2.2.3.3
Ibm Vios 2.2.1.0
Ibm Vios 2.2.1.1
Ibm Vios 2.2.2.4
Ibm Vios 2.2.2.5
Ibm Vios 2.2.3.0
Ibm Vios 2.2.0.10
Ibm Vios 2.2.0.11
Ibm Vios 2.2.1.8
Ibm Aix 7.1
Ibm Aix 6.1
NA
CVE-2014-3977
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179.
Ibm Vios 2.2.1.8
Ibm Vios 2.2.2.4
Ibm Vios 2.2.1.1
Ibm Vios 2.2.1.3
Ibm Vios 2.2.3.3
Ibm Aix 7.1
Ibm Vios 2.2.3.2
Ibm Vios 2.2.0.10
Ibm Vios 2.2.1.4
Ibm Aix 6.1
Ibm Vios 2.2.0.13
Ibm Vios 2.2.1.0
Ibm Vios 2.2.2.5
Ibm Vios 2.2.3.0
Ibm Vios 2.2.0.11
Ibm Vios 2.2.0.12
Ibm Vios 2.2.1.9
Ibm Vios 2.2.2.0
1 EDB exploit
NA
CVE-2012-4817
The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS prior to 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote malicious users to cause a denial of service via unspecified vectors.
Ibm Vios 2.2.1.3
Ibm Vios 2.2.1.1
Ibm Vios 2.1.2.12
Ibm Vios 2.1.2.10
Ibm Aix 5.3
Ibm Aix 6.1
Ibm Vios 2.2.0.12
Ibm Vios 2.2.0.11
Ibm Vios 1.5.2.1
Ibm Vios 1.5.1.1
Ibm Aix 7.1
Ibm Vios 2.2.1.4
Ibm Vios 2.2.0.10
Ibm Vios 2.1.3.10
Ibm Vios 2.1.2.13
Ibm Vios 1.4.1.2
Ibm Vios 2.2.1.0
Ibm Vios 2.2.0.13
Ibm Vios 2.1.0.0
Ibm Vios 1.5.2.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »