Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0899

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2014-0899
Last Modified 11 Mar 2014 10:57:10
Published 11 Mar 2014 09:01:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-0899

Summary

ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and modify arbitrary files via FTP commands.

Vulnerable Systems

Operating System

  • Ibm Aix 7.1.1

  • Ibm Aix 7.1.2


References

XF - ibm-aix-wpar-ftpd(91396)

AIXAPAR - IV51421

AIXAPAR - IV51420

CONFIRM - http://aix.software.ibm.com/aix/efixes/security/wparcre_advisory.asc


Last Updated: 27 May 2016 11:04:36