Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0370

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2009-0370
Last Modified 21 Aug 2010 01:30:13
Published 30 Jan 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-0370

Summary

Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."

Vulnerable Systems

Operating System

  • Ibm Aix 5.2

  • Ibm Aix 5.2 L

  • Ibm Aix 5.2.2

  • Ibm Aix 5.3

  • Ibm Aix 5.3 L

  • Ibm Aix 5.3.7

  • Ibm Aix 5.3.8

  • Ibm Aix 5.3.9

  • Ibm Aix 6.1

  • Ibm Aix 6.1.1

  • Ibm Aix 6.1.2


References

BID - 33522

AIXAPAR - IZ42788

AIXAPAR - IZ42787

AIXAPAR - IZ42786

AIXAPAR - IZ42785

AIXAPAR - IZ41599

AIXAPAR - IZ41510

AIXAPAR - IZ40386

AIXAPAR - IZ41593

CONFIRM - http://aix.software.ibm.com/aix/efixes/security/rmsock_advisory.asc


Last Updated: 27 May 2016 10:50:14