[VIM] slew of AIX APARs of interest (batch 6)

security curmudgeon jericho at attrition.org
Tue Mar 25 18:44:39 UTC 2008


While frolicking through the IBM APAR slag, I ran across a lot of entries 
that may be vulnerabilities and worthy of inclusion in VDBs. Due to the 
details being a bit vague, i'm not entirely sure which are 
vulnerabilities, which can be abused from user land privileges, etc. So, 
here they are for consideration and discussion. I'm including the URL, 
date reported and OSVDB-ish titles.


IBM AIX RPC Communication yp_all
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02536
http://www-1.ibm.com/support/docview.wss?uid=isg1IY98802

IBM AIX bos.net.nfs.client Directory Export
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02576
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02379

IBM AIX bos.mp64 raschk_safe_read
2007-08-05
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02585
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02526

IBM AIX Multiple Security Commands
2007-08-11
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02838
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01883

IBM AIX devices.common.IBM.fc.rte FC Interface IP Packet DoS
2007-08-11
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02845
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ01628

IBM AIX devices.fcp.disk.rte Virtual Optical Disk
2007-08-20
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03363

IBM AIX Process dbx detach
2007-08-21
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03438
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03134

IBM AIX bos.mp low._s Offset Overflow
2007-08-21
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03441
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03135

IBM AIX vmgetinfo vmpool Request DoS
2007-09-03
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04161
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04393

IBM AIX bos.aixpert.websm Websm
2007-09-09
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04505
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ04499



More information about the VIM mailing list