Lucene search

MitreCVE-2006-1246

HistoryMar 17, 2006 - 11:02 a.m.

CVE-2006-1246

2006-03-1711:02:00

mitre

web.nvd.nist.gov

vulnerability

mklvcopy

bos.rte.lvm

ibm aix 5.3

arbitrary commands

nvd

cve-2006-1246

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

High

EPSS

Percentile

9.8%

JSON

Unspecified vulnerability in mklvcopy in BOS.RTE.LVM in IBM AIX 5.3 allows local users to execute arbitrary commands when mklvcopy calls external commands, possibly due to an untrusted search path vulnerability.

Affected configurations

Nvd

Node

ibmaixMatch5.3

VendorProductVersionCPE
ibmaix5.3cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	5.3	cpe:2.3:o:ibm:aix:5.3:::::::*

References

attrition.org/pipermail/vim/2006-March/000641.html

secunia.com/advisories/19235

securitytracker.com/id?1015786

www-1.ibm.com/support/docview.wss?uid=isg1IY82739

www.nsfocus.com/english/homepage/research/0602.htm

www.osvdb.org/23921

www.securityfocus.com/bid/17115

www.vupen.com/english/advisories/2006/0957

exchange.xforce.ibmcloud.com/vulnerabilities/25299

exchange.xforce.ibmcloud.com/vulnerabilities/25849

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

High

EPSS

Percentile

9.8%

JSON

Related for CVE-2006-1246