Lucene search

MitreCVE-2005-2235

HistoryJul 12, 2005 - 4:00 a.m.

CVE-2005-2235

2005-07-1204:00:00

mitre

web.nvd.nist.gov

ibm aix

buffer overflow

diagtaskswebsm

cve-2005-2235

security vulnerability

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Buffer overflow in the diagTasksWebSM command in IBM AIX 5.1, 5.2 and 5.3, might allow local users to execute arbitrary code via long command line arguments.

Affected configurations

Nvd

Node

ibmaixMatch5.1

ibmaixMatch5.1l

ibmaixMatch5.2

ibmaixMatch5.2.2

ibmaixMatch5.2_l

ibmaixMatch5.3

ibmaixMatch5.3_l

VendorProductVersionCPE
ibmaix5.1cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*
ibmaix5.1lcpe:2.3:o:ibm:aix:5.1l:*:*:*:*:*:*:*
ibmaix5.2cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
ibmaix5.2.2cpe:2.3:o:ibm:aix:5.2.2:*:*:*:*:*:*:*
ibmaix5.2_lcpe:2.3:o:ibm:aix:5.2_l:*:*:*:*:*:*:*
ibmaix5.3cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
ibmaix5.3_lcpe:2.3:o:ibm:aix:5.3_l:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	5.1	cpe:2.3:o:ibm:aix:5.1:::::::*
ibm	aix	5.1l	cpe:2.3:o:ibm:aix:5.1l:::::::*
ibm	aix	5.2	cpe:2.3:o:ibm:aix:5.2:::::::*
ibm	aix	5.2.2	cpe:2.3:o:ibm:aix:5.2.2:::::::*
ibm	aix	5.2_l	cpe:2.3:o:ibm:aix:5.2_l:::::::*
ibm	aix	5.3	cpe:2.3:o:ibm:aix:5.3:::::::*
ibm	aix	5.3_l	cpe:2.3:o:ibm:aix:5.3_l:::::::*

References

secunia.com/advisories/15636

securitytracker.com/id?1014132

www.caughq.org/advisories/CAU-2005-0004.txt

www.security-focus.com/advisories/8819

www.securityfocus.com/bid/13912

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2005-2235