Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of AIX

AIX vulnerability: information disclosure via FTP NLST
An attacker can use the FTP NLST (or LIST) command, in order to force the ftpd daemon to generate a coredump, containing sensitive information.

AIX vulnerability: memory corruption via rpc.pcnfsd
A remote attacker can send a malicious RPC query, which corrupts the rpc.pcnfsd memory, in order to generate a denial of service, and possibly to execute code.

AIX vulnerability: buffer overflow via bn_wexpand
The OpenSSL library does not check the error code of the bn_wexpand() function, which can generate a denial of service, or lead to code execution.

AIX vulnerability: denial of service via LDAP
A local attacker may forbid the access to users authenticated by LDAP.

AIX vulnerability: buffer overflow of qoslist and qosmod
A local attacker can generate an overflow in the qoslist and qosmod commands, in order to elevate his privileges.

Display other vulnerabilities of AIX described by Vigil@nce...

Display information about AIX:



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française