Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4623

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-4623
Last Modified 07 Mar 2011 09:58:54
Published 05 Nov 2007 11:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-4623

Summary

Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command.

Vulnerable Systems

Operating System

  • Ibm Aix 5.2

  • Ibm Aix 5.3


References

CONFIRM - http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile094529

BID - 26257

CONFIRM - ftp://aix.software.ibm.com/aix/efixes/security/bellmail_ifix.tar

XF - aix-bellmail-bo(38150)

VUPEN - ADV-2007-3669

AIXAPAR - IZ05066

AIXAPAR - IZ05065

IDEFENSE - 20071030 IBM AIX bellmail Stack Buffer Overflow Vulnerability

SECTRACK - 1018871

SECUNIA - 27437


Last Updated: 27 May 2016 10:45:54