The OVAL Repository5.102015-09-03T11:04:03.493-04:00Stack-based buffer overflow in muxatmd.IBM AIX 5.2IBM AIX 5.3IBM AIX 6.1Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDat allows local users to read arbitrary files.IBM AIX 5.2IBM AIX 5.3IBM AIX 6.1at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDMultiple unspecified vulnerabilities in IBM AIX rmsock."IBM AIX 5.2IBM AIX 5.3IBM AIX 6.1Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5300-00 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-00.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5300-01 through 5300-06 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-01 through 5300-06.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDtftp buffer overflow allows local users to gain privilegesIBM AIX 5.2IBM AIX 5.3Buffer overflow in tftp in bos.net.tcp.client in IBM AIX 5.2.0 and 5.3.0 allows local users to gain privileges via unspecified vectors.Michael WoodDRAFTINTERIMACCEPTEDJerome AthiasINTERIMACCEPTEDACCEPTEDIBM AIX 'swcons' Insecure File Creation VulnerabilityIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1swcons in bos.rte.console in IBM AIX 5.2.0 through 6.1.1 allows local users in the system group to create or overwrite an arbitrary file, and establish weak permissions and root ownership for this file, via unspecified vectors. NOTE: this can be leveraged to gain privileges. NOTE: this issue exists because of an incomplete fix for CVE-2007-5805.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 6.1 is installedIBM AIX 6.1The operating system installed on the system is IBM AIX 6.1.Michael WoodMichael WoodDRAFTMichael WoodINTERIMACCEPTEDChandan M CINTERIMACCEPTEDACCEPTEDAIX swap commands buffer overflowIBM AIX 5.2IBM AIX 5.3Multiple buffer overflows in bos.rte.control in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors related to the (1) swap, (2) swapoff, and (3) swapon programs.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDAIX Logical Volume Manager buffer overflowIBM AIX 5.2IBM AIX 5.3Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors related to the (1) lchangevg, (2) ldeletepv, (3) putlvodm, (4) lvaryoffvg, and (5) lvgenminor programs in bos.rte.lvm; and the (6) tellclvmd program in bos.clvm.enh.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDAIX uspchrp buffer overflowIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1Buffer overflow in the uspchrp program in devices.chrp.base.diag in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX lquerypv Local Privilege Escalation VulnerabilityIBM AIX 5.2IBM AIX 5.3Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDAIX pioout buffer overflowIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1Buffer overflow in the pioout program in printers.rte in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long command line option.Michael WoodDRAFTINTERIMACCEPTEDAharon CherninINTERIMACCEPTEDACCEPTEDIBM AIX 5300-09 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-09.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 6100-01 is installedIBM AIX 6.1The operating system installed on the system is IBM AIX version 6100-01.Aharon CherninDRAFTAharon CherninINTERIMACCEPTEDACCEPTEDIBM AIX 6100-02 is installedIBM AIX 6.1The operating system installed on the system is IBM AIX version 6100-02.Aharon CherninDRAFTAharon CherninINTERIMACCEPTEDACCEPTEDAIX utape buffer overflowIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1Buffer overflow in the utape program in devices.scsi.tape.diag in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX lsmcode Environment Variable Bug Lets Local Users Gain Root PrivilegesIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1The lsmcode program on IBM AIX 5.2, 5.3, and 6.1 does not properly handle environment variables, which allows local users to gain privileges, a different vulnerability than CVE-2004-1329.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDIBM AIX Buffer Overflow in 'reboot' Command Lets Local Users Execute Arbitrary CodeIBM AIX 5.2IBM AIX 5.3Stack-based buffer overflow in the reboot program on IBM AIX 5.2 and 5.3 allows local users in the shutdown group to gain privileges.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDIBM AIX buffer overflow in chcon command has unspecified impactIBM AIX 5.2IBM AIX 5.3Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument.Yuzheng ZhouDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 'nddstat' Commands Let Local Users Gain Root PrivilegesIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDIBM AIX Multiple Privilege Escalation and Security Bypass VulnerabilitiesIBM AIX 5.2IBM AIX 5.3The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDIBM AIX Multiple Privilege Escalation and Security Bypass VulnerabilitiesIBM AIX 5.2IBM AIX 5.3The proc filesystem in the kernel in IBM AIX 5.2 and 5.3 does not properly enforce directory permissions when a file executing from a directory has weaker permissions than the directory itself, which allows local users to obtain sensitive information.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDAIX bellmail buffer overflow vulnerabilityIBM AIX 5.2IBM AIX 5.3Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command.Yuzheng ZhouDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX Kernel Bugs Let Local Users Execute Arbitrary Code, Access Data, and Deny ServiceIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allows local users to read and modify portions of memory and gain privileges via unspecified vectors involving a restart of a 64-bit process, probably related to the as_getadsp64 function.Michael WoodDRAFTINTERIMACCEPTEDMichael WoodINTERIMACCEPTEDACCEPTEDIBM AIX 6100-00 is installedIBM AIX 6.1The operating system installed on the system is IBM AIX version 6100-00.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5300-08 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-08.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDBuffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long path name.IBM AIX 5.3IBM AIX 5.2Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long path name.Aharon CherninDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5300-00 through 5300-05 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-00 through 5300-05.Aharon CherninDRAFTINTERIMACCEPTEDShane ShafferINTERIMACCEPTEDACCEPTEDIBM AIX 5300-07 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-07.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5200-10 is installedIBM AIX 5.2The operating system installed on the system is IBM AIX version 5200-10.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5300-06 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX version 5300-06.Michael WoodDRAFTINTERIMACCEPTEDACCEPTEDAIX OpenSSL session renegotiation vulnerabilityIBM AIX 5.2IBM AIX 5.3IBM AIX 6.1The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a "plaintext injection" attack, aka the "Project Mogul" issue.Yamini Mohan RDRAFTINTERIMACCEPTEDACCEPTEDIBM AIX 5.3 is installedIBM AIX 5.3The operating system installed on the system is IBM AIX 5.3.Yuzheng ZhouDRAFTINTERIMACCEPTEDMichael WoodINTERIMMichael WoodACCEPTEDACCEPTEDIBM AIX 5.2 is installedIBM AIX 5.2The operating system installed on the system is IBM AIX 5.2.Yuzheng ZhouDRAFTINTERIMACCEPTEDMichael WoodINTERIMMichael WoodACCEPTEDACCEPTEDIZ48495IZ48501IZ48562IZ48561IZ48496IZ48499IZ48500devices.common.IBM.atm.rteIZ48502IZ43456IZ43458IZ43454IZ43453IZ43457IZ43455IZ43459IZ43452bos.rte.cronIZ41599IZ41510IZ42788IZ41593/usr/sbinrmsock/usr/sbinrmsock64IZ42786IZ42787IZ40386IZ42785IZ03060IZ03054IZ03392IZ28943IZ18334IZ18338IZ18335IZ18341IZ18339IY96101IY95874IY96905IY98340IY99517IY98448IY99537IZ00559IY98450IY98331IZ10828IZ07042IZ06317IZ06621IZ06261IZ06489IZ05349IZ05971IZ05200IZ05877IZ06079IZ05129IZ10844IZ10841IZ10843IZ10840IZ10842IZ11328/usr/lib/lpd/pio/etcpiooutIZ11687printers.rteIZ11214IZ06260IZ06315IZ06620IZ06488IZ07041IZ15277IZ15100IZ15276IZ14526IZ15057IZ06199IZ06078IZ15479IZ15480IY78241IY78253IZ14508IZ16975IZ17059IZ16991IZ17058IZ05246IZ04946IZ04953IZ06663IZ06505IZ06022bos.net.tcp.clientIZ12794IZ10749IZ16992IZ17111IZ11820IY96753IY96772IY95054openssl.base6.1.1.06.1.0.05.3.0.605.3.8.05.3.9.05.2.0.515.2.0.976.1.2.05.3.0.635.3.7.26.1.0.15.3.7.05.3.0.636.1.1.26.1.2.06.1.1.05.3.0.05.3.7.06.1.0.05.3.8.16.1.0.15.2.0.1065.3.7.15.2.0.05.3.8.05.3.9.05300-005300-015300-066.1.0.05.3.7.06.1.2.26.1.1.06.1.1.3true6.1.2.05.3.0.725.3.9.25.3.9.05.3.7.75.3.8.66.1.0.75.3.8.07100-006100-005300-096100-016100-02trueCOMMITTED5.3.0.05.3.0.645.2.0.1085.2.0.06100-005300-085300-055300-075200-105300-06ALL_INSTALLED5300-005400-005200-005300-000.9.8.11020.9.8.80512.9.8.11026200-006100-00