[VIM] slew of AIX APARs of interest (batch 6)
security curmudgeon
jericho at attrition.org
Tue Mar 25 18:44:39 UTC 2008
While frolicking through the IBM APAR slag, I ran across a lot of entries
that may be vulnerabilities and worthy of inclusion in VDBs. Due to the
details being a bit vague, i'm not entirely sure which are
vulnerabilities, which can be abused from user land privileges, etc. So,
here they are for consideration and discussion. I'm including the URL,
date reported and OSVDB-ish titles.
IBM AIX RPC Communication yp_all
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02536
http://www-1.ibm.com/support/docview.wss?uid=isg1IY98802
IBM AIX bos.net.nfs.client Directory Export
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02576
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02379
IBM AIX bos.mp64 raschk_safe_read
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02585
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02526
IBM AIX Multiple Security Commands
2007-08-11
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02838
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01883
IBM AIX devices.common.IBM.fc.rte FC Interface IP Packet DoS
2007-08-11
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02845
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01628
IBM AIX devices.fcp.disk.rte Virtual Optical Disk
2007-08-20
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03363
IBM AIX Process dbx detach
2007-08-21
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03438
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03134
IBM AIX bos.mp low._s Offset Overflow
2007-08-21
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03441
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03135
IBM AIX vmgetinfo vmpool Request DoS
2007-09-03
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04161
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04393
IBM AIX bos.aixpert.websm Websm
2007-09-09
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04505
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04499
More information about the VIM
mailing list