| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Sendmail decode alias can be used to overwrite sensitive files. |
| The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). |
| Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. |
| Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. |
| Remote access in AIX innd 1.5.1, using control messages. |
| Buffer overflow in ffbconfig in Solaris 2.5.1. |
| Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm. |
| A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. |
| finger allows recursive searches by using a long string of @ symbols. |
| Finger redirection allows finger bombs. |
| The printers program in IRIX has a buffer overflow that gives root access to local users. |
| Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. |
| AIX bugfiler program allows local users to gain root access. |
| Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. |
| AIX passwd allows local users to gain root access. |
| AIX infod allows local users to gain root access through an X display. |
| Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root. |
| Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. |
| Buffer overflow in SGI IRIX mailx program. |
| swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access. |
