CVE-2009-0370

Sažetak

Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."

Reference

http://aix.software.ibm.com/aix/efixes/security/rmsock_advisory.asc
http://www.ibm.com/support/docview.wss?uid=isg1IZ40386
http://www.ibm.com/support/docview.wss?uid=isg1IZ41510
http://www.ibm.com/support/docview.wss?uid=isg1IZ41593
http://www.ibm.com/support/docview.wss?uid=isg1IZ41599
http://www.ibm.com/support/docview.wss?uid=isg1IZ42785
http://www.ibm.com/support/docview.wss?uid=isg1IZ42786
http://www.ibm.com/support/docview.wss?uid=isg1IZ42787
http://www.ibm.com/support/docview.wss?uid=isg1IZ42788
http://www.securityfocus.com/bid/33522
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6028

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-09-2017 - 01:33

Objavljeno

30-01-2009 - 19:30