| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| File creation and deletion, and remote execution, in the BSD line printer daemon (lpd). |
| Buffer overflow in AIX lquerylv program gives root access to local users. |
| Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands. |
| AnyForm CGI remote execution. |
| CGI PHP mylog script allows an attacker to read any file on the target server. |
| Solaris ufsrestore buffer overflow. |
| Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. |
| Listening TCP ports are sequentially allocated, allowing spoofing attacks. |
| PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password. |
| Buffer overflow in wu-ftp from PASV command causes a core dump. |
| Predictable TCP sequence numbers allow spoofing. |
| pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. |
| Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports. |
| Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command. |
| getcwd() file descriptor leak in FTP. |
| Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0. |
| Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname. |
| AIX routed allows remote users to modify sensitive files. |
| Denial of service in AIX telnet can freeze a system and prevent users from accessing the server. |
| IRIX and AIX automountd services (autofsd) allow remote users to execute root commands. |
