Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4513

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-4513
Last Modified 07 Mar 2011 09:58:42
Published 05 Nov 2007 11:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-4513

Summary

Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv.

Vulnerable Systems

Operating System

  • Ibm Aix 5.2

  • Ibm Aix 5.3


References

BID - 26259

BID - 26256

CONFIRM - ftp://aix.software.ibm.com/aix/efixes/security/lquerypv_ifix.tar

VUPEN - ADV-2007-3669

AIXAPAR - IZ05971

AIXAPAR - IZ05877

AIXAPAR - IZ05349

AIXAPAR - IZ05129

IDEFENSE - 20071030 IBM AIX lquerypv Stack Buffer Overflow Vulnerability

IDEFENSE - 20071030 IBM AIX lqueryvg Stack Buffer Overflow Vulnerability

CONFIRM - ftp://aix.software.ibm.com/aix/efixes/security/lqueryvg_ifix.tar

XF - aix-lqueryvg-sprintf-bo(38165)

SECTRACK - 1018871

SECUNIA - 27437


Last Updated: 27 May 2016 10:45:53