Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2200

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2012-2200
Last Modified 21 Mar 2013 11:10:12
Published 27 Jun 2012 06:18:37
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-2200

Summary

The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges by entering a command in a .forward file in a home directory.

Vulnerable Systems

Operating System

  • Ibm Aix 6.1

  • Ibm Aix 7.1

  • Ibm Vios 2.2.1.4


References

XF - aix-sendmail-command-execution(76466)

AIXAPAR - IV22966

AIXAPAR - IV22965

AIXAPAR - IV22964

AIXAPAR - IV22963

CONFIRM - http://aix.software.ibm.com/aix/efixes/security/sendmail1_advisory.asc

SECTRACK - 1027207


Last Updated: 27 May 2016 10:56:35