Lucene search
This script is Copyright (C) 2013-2023 Tenable Network Security, Inc.AIX_IV51388.NASLHistoryNov 01, 2013 - 12:00 a.m.
AIX 5.3 TL 12 : cmdque (IV51388)
2013-11-0100:00:00
This script is Copyright (C) 2013-2023 Tenable Network Security, Inc.
www.tenable.com
14
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.2%
Printer commands mkque and mkquedev are susceptible to buffer overflow by users belonging to the ‘printq’ group. These commands are owned by ‘root’ and SUID bit set. The group is set to ‘printq’. By default, no users are belong to the ‘printq’.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text in the description was extracted from AIX Security
# Advisory cmdque_advisory.asc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(70721);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/21");
script_cve_id("CVE-2013-5419");
script_name(english:"AIX 5.3 TL 12 : cmdque (IV51388)");
script_summary(english:"Check for APAR IV51388");
script_set_attribute(
attribute:"synopsis",
value:"The remote AIX host is missing a security patch."
);
script_set_attribute(
attribute:"description",
value:
"Printer commands mkque and mkquedev are susceptible to buffer overflow
by users belonging to the 'printq' group. These commands are owned by
'root' and SUID bit set. The group is set to 'printq'. By default, no
users are belong to the 'printq'."
);
script_set_attribute(
attribute:"see_also",
value:"https://aix.software.ibm.com/aix/efixes/security/cmdque_advisory.asc"
);
script_set_attribute(
attribute:"solution",
value:"Install the appropriate interim fix."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:5.3");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/09/25");
script_set_attribute(attribute:"patch_publication_date", value:"2013/09/25");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/11/01");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2023 Tenable Network Security, Inc.");
script_family(english:"AIX Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("aix.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);
if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") );
flag = 0;
if (aix_check_ifix(release:"5.3", ml:"12", sp:"08", patch:"IV51388s8b", package:"bos.rte.printers", minfilesetver:"5.3.12.1", maxfilesetver:"5.3.12.1") < 0) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
nessus
nessus
AIX 7.1 TL 2 : cmdque (IV47430)
2013-10-03 00:00:00
AIX 7.1 TL 1 : cmdque (IV47429)
2013-10-03 00:00:00
AIX 6.1 TL 8 : cmdque (IV47428)
2013-10-03 00:00:00
cvelist
cvelist
CVE-2013-5419
2013-10-04 10:00:00
nvd
nvd
CVE-2013-5419
2013-10-04 10:44:07
prion
prion
Buffer overflow
2013-10-04 10:44:00
cve
cve
CVE-2013-5419
2013-10-04 10:44:07
aix
aix
AIX printer commands vulnerability
2013-09-25 15:55:39
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.2%
Related for AIX_IV51388.NASL