CVE-2007-4798

Sažetak

Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname alias, as demonstrated by hostnames ending in "unix".

Reference

http://osvdb.org/40393
http://secunia.com/advisories/26715
http://www.securityfocus.com/bid/25556
http://www.vupen.com/english/advisories/2007/3059
http://www-1.ibm.com/support/docview.wss?uid=isg1IY98506
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3846
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3847
https://exchange.xforce.ibmcloud.com/vulnerabilities/36447

CVSS

Base:	6.6
Impact:	9.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:C/A:C

Zadnje važnije ažuriranje

29-07-2017 - 01:33

Objavljeno

10-09-2007 - 21:17