Lucene search

[email protected]CVE-1999-0803

HistoryMay 25, 1999 - 4:00 a.m.

CVE-1999-0803

1999-05-2504:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-0803

aix

enetwork

firewall

fwluser

symlink attack

local users

security vulnerability

7.1 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack.

CPENameOperatorVersion
ibm:aix_enetwork_firewallibm aix enetwork firewalleq3.3
ibm:aix_enetwork_firewallibm aix enetwork firewalleq3.2

CPE	Name	Operator	Version
ibm:aix_enetwork_firewall	ibm aix enetwork firewall	eq	3.3
ibm:aix_enetwork_firewall	ibm aix enetwork firewall	eq	3.2

References

marc.info/?l=bugtraq&m=92765973207648&w=2

www.osvdb.org/962

7.1 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON