Lucene search

[email protected]CVE-2005-2237

HistoryJul 12, 2005 - 4:00 a.m.

CVE-2005-2237

2005-07-1204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ibm

aix

5.3

format string vulnerability

swcons command

nvd

8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Format string vulnerability in the swcons command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via long command line arguments.

References

securitytracker.com/id?1014132

www.caughq.org/advisories/CAU-2005-0007.txt

www.securityfocus.com/bid/13921

8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON