Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4798

Overview

Vulnerability Score 6.6 6.6
CVE Id CVE-2007-4798
Last Modified 07 Mar 2011 09:59:12
Published 10 Sep 2007 05:17:00
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-4798

Summary

Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname alias, as demonstrated by hostnames ending in "unix".

Vulnerable Systems

Operating System

  • Ibm Aix 5.2

  • Ibm Aix 5.3


References

CONFIRM - http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3847

CONFIRM - http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3846

BID - 25556

AIXAPAR - IY98506

SECUNIA - 26715

XF - aix-inventoryscout-dos(36447)

VUPEN - ADV-2007-3059

OSVDB - 40393

Related Patches

IBM AIX APAR IY98506: 5.2/5.3: INVSCOUT CAN DELETE INCORRECT FILES


Last Updated: 27 May 2016 10:45:58