CVE-2009-2727

Sažetak

Stack-based buffer overflow in the _tt_internal_realpath function in the ToolTalk library (libtt.a) in IBM AIX 5.2.0, 5.3.0, 5.3.7 through 5.3.10, and 6.1.0 through 6.1.3, when the rpc.ttdbserver daemon is enabled in /etc/inetd.conf, allows remote attackers to execute arbitrary code via a long XDR-encoded ASCII string to remote procedure 15.

Reference

http://aix.software.ibm.com/aix/efixes/security/libtt_advisory.asc
http://risesecurity.org/advisories/RISE-2009001.txt
http://secunia.com/advisories/35505
http://www.ibm.com/support/docview.wss?uid=isg1IZ52842
http://www.ibm.com/support/docview.wss?uid=isg1IZ52843
http://www.ibm.com/support/docview.wss?uid=isg1IZ52844
http://www.ibm.com/support/docview.wss?uid=isg1IZ52845
http://www.ibm.com/support/docview.wss?uid=isg1IZ52846
http://www.ibm.com/support/docview.wss?uid=isg1IZ52847
http://www.ibm.com/support/docview.wss?uid=isg1IZ52848
http://www.ibm.com/support/docview.wss?uid=isg1IZ52849
http://www.ibm.com/support/docview.wss?uid=isg1IZ52850
http://www.ibm.com/support/docview.wss?uid=isg1IZ52851
http://www.securityfocus.com/bid/35419
http://www.vupen.com/english/advisories/2009/1620

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-08-2009 - 04:00

Objavljeno

10-08-2009 - 23:30