Lucene search

[email protected]CVE-2007-4798

HistorySep 10, 2007 - 9:17 p.m.

CVE-2007-4798

2007-09-1021:17:00

CWE-264

[email protected]

web.nvd.nist.gov

ibm

aix

invscout

vulnerability

nvd

cve-2007-4798

6.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:C/A:C

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname alias, as demonstrated by hostnames ending in “unix”.

Affected configurations

NVD

Node

ibmaixMatch5.2

ibmaixMatch5.3

CPENameOperatorVersion
ibm:aixibm aixeq5.2
ibm:aixibm aixeq5.3

CPE	Name	Operator	Version
ibm:aix	ibm aix	eq	5.2
ibm:aix	ibm aix	eq	5.3

References

osvdb.org/40393

secunia.com/advisories/26715

www-1.ibm.com/support/docview.wss?uid=isg1IY98506

www.securityfocus.com/bid/25556

www.vupen.com/english/advisories/2007/3059

www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3846

www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3847

exchange.xforce.ibmcloud.com/vulnerabilities/36447

6.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:C/A:C

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2007-4798

nvd1 prion1 cvelist1