S2 Crew

**Name of the Vulnerable Software and Affected Versions** IBM AIX versions 5.3, 6.1, and 7.1 VIOS versions 2.2.x **Description** The issue allows local users to gain privileges via a crafted `DBGCMD LQUERYLV` environment-variable value when running the lquerylv command. This could potentially allow a local user to gain root privileges. **Recommendations** For IBM AIX versions 5.3, 6.1, and 7.1, consider restricting access to the lquerylv command until a patch is available. For VIOS versions 2.2.x, avoid using the `DBGCMD LQUERYLV` environment variable in the lquerylv command until the issue is resolved. As a temporary workaround, consider disabling the lquerylv command until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Motorola SURFBoard cable modem SBV6120E version SBV6X2X-1.0.0.5-SCM-02-SHPC **Description** The issue allows remote attackers to read arbitrary files via directory traversal vulnerabilities in the web server. This can be achieved by using (1) "//" (multiple leading slash), (2) ../ (dot dot) sequences, and encoded dot dot sequences in a URL request. **Recommendations** For Motorola SURFBoard cable modem SBV6120E version SBV6X2X-1.0.0.5-SCM-02-SHPC, consider restricting access to the web server until a patch is available. As a temporary workaround, avoid using the vulnerable web server functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HP OpenView Network Node Manager versions 7.01, 7.51, and 7.53 **Description** The issue is related to a stack-based buffer overflow in the getnnmdata.exe component. This occurs when an invalid `iCount` parameter is provided, allowing remote attackers to execute arbitrary code. **Recommendations** For HP OpenView Network Node Manager version 7.01, update to a version that fixes this issue. For HP OpenView Network Node Manager version 7.51, update to a version that fixes this issue. For HP OpenView Network Node Manager version 7.53, update to a version that fixes this issue. As a temporary workaround, consider restricting access to the getnnmdata.exe component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Core Design Scriptegrator plugin version 1.4.1 for Joomla! **Description** A directory traversal issue exists, allowing remote attackers to read, and possibly include and execute, arbitrary files via directory traversal sequences in the `files[]` parameter. **Recommendations** For Core Design Scriptegrator plugin version 1.4.1, consider restricting access to the `jsloader.php` file in the `plugins/system/cdscriptegrator/libraries/highslide/js` directory until a patch is available. Avoid using the `files[]` parameter in the affected API endpoint until the issue is resolved.