Lucene search

[email protected]NVD:CVE-2009-0536

HistoryFeb 11, 2009 - 8:30 p.m.

CVE-2009-0536

2009-02-1120:30:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

5.9

Confidence

Low

EPSS

Percentile

10.1%

JSON

at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.

Affected configurations

Nvd

Node

ibmaixMatch5.2.0

ibmaixMatch5.3.0

ibmaixMatch5.3.7

ibmaixMatch5.3.8

ibmaixMatch5.3.9

ibmaixMatch6.1.0

ibmaixMatch6.1.1

ibmaixMatch6.1.2

VendorProductVersionCPE
ibmaix5.2.0cpe:2.3:o:ibm:aix:5.2.0:*:*:*:*:*:*:*
ibmaix5.3.0cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*
ibmaix5.3.7cpe:2.3:o:ibm:aix:5.3.7:*:*:*:*:*:*:*
ibmaix5.3.8cpe:2.3:o:ibm:aix:5.3.8:*:*:*:*:*:*:*
ibmaix5.3.9cpe:2.3:o:ibm:aix:5.3.9:*:*:*:*:*:*:*
ibmaix6.1.0cpe:2.3:o:ibm:aix:6.1.0:*:*:*:*:*:*:*
ibmaix6.1.1cpe:2.3:o:ibm:aix:6.1.1:*:*:*:*:*:*:*
ibmaix6.1.2cpe:2.3:o:ibm:aix:6.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	5.2.0	cpe:2.3:o:ibm:aix:5.2.0:::::::*
ibm	aix	5.3.0	cpe:2.3:o:ibm:aix:5.3.0:::::::*
ibm	aix	5.3.7	cpe:2.3:o:ibm:aix:5.3.7:::::::*
ibm	aix	5.3.8	cpe:2.3:o:ibm:aix:5.3.8:::::::*
ibm	aix	5.3.9	cpe:2.3:o:ibm:aix:5.3.9:::::::*
ibm	aix	6.1.0	cpe:2.3:o:ibm:aix:6.1.0:::::::*
ibm	aix	6.1.1	cpe:2.3:o:ibm:aix:6.1.1:::::::*
ibm	aix	6.1.2	cpe:2.3:o:ibm:aix:6.1.2:::::::*

References

aix.software.ibm.com/aix/efixes/security/at_advisory.asc

osvdb.org/51952

secunia.com/advisories/33915

www.ibm.com/support/docview.wss?uid=isg1IZ43452

www.ibm.com/support/docview.wss?uid=isg1IZ43453

www.ibm.com/support/docview.wss?uid=isg1IZ43454

www.ibm.com/support/docview.wss?uid=isg1IZ43455

www.ibm.com/support/docview.wss?uid=isg1IZ43456

www.ibm.com/support/docview.wss?uid=isg1IZ43457

www.ibm.com/support/docview.wss?uid=isg1IZ43458

www.ibm.com/support/docview.wss?uid=isg1IZ43459

www.securityfocus.com/bid/33730

www.securitytracker.com/id?1021704

www.vupen.com/english/advisories/2009/0405

www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4558

exchange.xforce.ibmcloud.com/vulnerabilities/48660

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6155

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

5.9

Confidence

Low

EPSS

Percentile

10.1%

JSON

Related for NVD:CVE-2009-0536

nessus16 cve1 cvelist1 prion1