Lucene search

MitreCVE-2004-2312

HistoryAug 16, 2005 - 4:00 a.m.

CVE-2004-2312

2005-08-1604:00:00

mitre

web.nvd.nist.gov

buffer overflow

gnu make

ibm aix 4.3.3

local privilege escalation

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

Percentile

0.4%

JSON

Buffer overflow in GNU make for IBM AIX 4.3.3, when installed setgid, allows local users to gain privileges via a long CC argument.

Affected configurations

Nvd

Node

ibmaixMatch4.3.3

VendorProductVersionCPE
ibmaix4.3.3cpe:2.3:o:ibm:aix:4.3.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	4.3.3	cpe:2.3:o:ibm:aix:4.3.3:::::::*

References

archives.neohapsis.com/archives/fulldisclosure/2004-03/0997.html

archives.neohapsis.com/archives/fulldisclosure/2004-03/1124.html

secunia.com/advisories/11158/

www.osvdb.org/4391

www.securityfocus.com/bid/9903

exchange.xforce.ibmcloud.com/vulnerabilities/15554

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2004-2312