CVE-2009-0370
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating “secure log files.”
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | aix | 5.2 | cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:* |
| ibm | aix | 5.2.2 | cpe:2.3:o:ibm:aix:5.2.2:*:*:*:*:*:*:* |
| ibm | aix | 5.2_l | cpe:2.3:o:ibm:aix:5.2_l:*:*:*:*:*:*:* |
| ibm | aix | 5.3 | cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:* |
| ibm | aix | 5.3.7 | cpe:2.3:o:ibm:aix:5.3.7:*:*:*:*:*:*:* |
| ibm | aix | 5.3.8 | cpe:2.3:o:ibm:aix:5.3.8:*:*:*:*:*:*:* |
| ibm | aix | 5.3.9 | cpe:2.3:o:ibm:aix:5.3.9:*:*:*:*:*:*:* |
| ibm | aix | 5.3_l | cpe:2.3:o:ibm:aix:5.3_l:*:*:*:*:*:*:* |
| ibm | aix | 6.1 | cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:* |
| ibm | aix | 6.1.1 | cpe:2.3:o:ibm:aix:6.1.1:*:*:*:*:*:*:* |
References
aix.software.ibm.com/aix/efixes/security/rmsock_advisory.asc
www.ibm.com/support/docview.wss?uid=isg1IZ40386
www.ibm.com/support/docview.wss?uid=isg1IZ41510
www.ibm.com/support/docview.wss?uid=isg1IZ41593
www.ibm.com/support/docview.wss?uid=isg1IZ41599
www.ibm.com/support/docview.wss?uid=isg1IZ42785
www.ibm.com/support/docview.wss?uid=isg1IZ42786
www.ibm.com/support/docview.wss?uid=isg1IZ42787
www.ibm.com/support/docview.wss?uid=isg1IZ42788
www.securityfocus.com/bid/33522
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6028
Related
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%