Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2647

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2006-2647
Last Modified 07 Mar 2011 09:36:42
Published 30 May 2006 06:02:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-2647

Summary

Untrusted search path vulnerability in update_flash for IBM AIX 5.1, 5.2 and 5.3 allows local users to execute arbitrary commands via unknown vectors involving lsmcode and possibly other commands.

Vulnerable Systems

Operating System

  • Ibm Aix 5.1

  • Ibm Aix 5.2

  • Ibm Aix 5.3


References

AIXAPAR - IY88524

AIXAPAR - IY85518

AIXAPAR - IY85517

SECTRACK - 1016166

VUPEN - ADV-2006-2007

BID - 18114

SECUNIA - 20325


Last Updated: 27 May 2016 10:42:42