Lucene search

MitreCVE-2009-0536

HistoryFeb 11, 2009 - 8:30 p.m.

CVE-2009-0536

2009-02-1120:30:00

CWE-264

mitre

web.nvd.nist.gov

ibm aix

cve-2009-0536

information security

nvd

vulnerability

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

10.1%

JSON

at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.

Affected configurations

Nvd

Node

ibmaixMatch5.2.0

ibmaixMatch5.3.0

ibmaixMatch5.3.7

ibmaixMatch5.3.8

ibmaixMatch5.3.9

ibmaixMatch6.1.0

ibmaixMatch6.1.1

ibmaixMatch6.1.2

VendorProductVersionCPE
ibmaix5.2.0cpe:2.3:o:ibm:aix:5.2.0:*:*:*:*:*:*:*
ibmaix5.3.0cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*
ibmaix5.3.7cpe:2.3:o:ibm:aix:5.3.7:*:*:*:*:*:*:*
ibmaix5.3.8cpe:2.3:o:ibm:aix:5.3.8:*:*:*:*:*:*:*
ibmaix5.3.9cpe:2.3:o:ibm:aix:5.3.9:*:*:*:*:*:*:*
ibmaix6.1.0cpe:2.3:o:ibm:aix:6.1.0:*:*:*:*:*:*:*
ibmaix6.1.1cpe:2.3:o:ibm:aix:6.1.1:*:*:*:*:*:*:*
ibmaix6.1.2cpe:2.3:o:ibm:aix:6.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	5.2.0	cpe:2.3:o:ibm:aix:5.2.0:::::::*
ibm	aix	5.3.0	cpe:2.3:o:ibm:aix:5.3.0:::::::*
ibm	aix	5.3.7	cpe:2.3:o:ibm:aix:5.3.7:::::::*
ibm	aix	5.3.8	cpe:2.3:o:ibm:aix:5.3.8:::::::*
ibm	aix	5.3.9	cpe:2.3:o:ibm:aix:5.3.9:::::::*
ibm	aix	6.1.0	cpe:2.3:o:ibm:aix:6.1.0:::::::*
ibm	aix	6.1.1	cpe:2.3:o:ibm:aix:6.1.1:::::::*
ibm	aix	6.1.2	cpe:2.3:o:ibm:aix:6.1.2:::::::*

References

aix.software.ibm.com/aix/efixes/security/at_advisory.asc

osvdb.org/51952

secunia.com/advisories/33915

www.ibm.com/support/docview.wss?uid=isg1IZ43452

www.ibm.com/support/docview.wss?uid=isg1IZ43453

www.ibm.com/support/docview.wss?uid=isg1IZ43454

www.ibm.com/support/docview.wss?uid=isg1IZ43455

www.ibm.com/support/docview.wss?uid=isg1IZ43456

www.ibm.com/support/docview.wss?uid=isg1IZ43457

www.ibm.com/support/docview.wss?uid=isg1IZ43458

www.ibm.com/support/docview.wss?uid=isg1IZ43459

www.securityfocus.com/bid/33730

www.securitytracker.com/id?1021704

www.vupen.com/english/advisories/2009/0405

www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4558

exchange.xforce.ibmcloud.com/vulnerabilities/48660

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6155

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

10.1%

JSON

Related for CVE-2009-0536