| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| AIX piodmgrsu command allows local users to gain additional group privileges. |
| The debug command in Sendmail is enabled, allowing attackers to execute commands as root. |
| Sendmail decode alias can be used to overwrite sensitive files. |
| The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). |
| Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. |
| Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. |
| Remote access in AIX innd 1.5.1, using control messages. |
| Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names. |
| Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. |
| Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm. |
| A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. |
| finger allows recursive searches by using a long string of @ symbols. |
| Finger redirection allows finger bombs. |
| Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. |
| The printers program in IRIX has a buffer overflow that gives root access to local users. |
| Buffer overflow in ffbconfig in Solaris 2.5.1. |
| RIP v1 is susceptible to spoofing. |
| Buffer overflow in AIX dtterm program for the CDE. |
| Some implementations of rlogin allow root access if given a -froot parameter. |
| Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. |
