[email protected]CVE-2009-1355

HistoryApr 21, 2009 - 4:24 p.m.

CVE-2009-1355

2009-04-2116:24:52

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-1355

ibm aix

buffer overflow

privilege escalation

filename

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.3%

JSON

Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename.

Affected configurations

NVD

Node

ibmaixMatch5.2

ibmaixMatch5.3

ibmaixMatch6.1

CPENameOperatorVersion
ibm:aixibm aixeq5.2
ibm:aixibm aixeq5.3
ibm:aixibm aixeq6.1

CPE	Name	Operator	Version
ibm:aix	ibm aix	eq	5.2
ibm:aix	ibm aix	eq	5.3
ibm:aix	ibm aix	eq	6.1

References

aix.software.ibm.com/aix/efixes/security/muxatmd_advisory.asc

labs.idefense.com/intelligence/vulnerabilities/display.php?id=784

secunia.com/advisories/34662

www.ibm.com/support/docview.wss?uid=isg1IZ48495

www.ibm.com/support/docview.wss?uid=isg1IZ48496

www.ibm.com/support/docview.wss?uid=isg1IZ48499

www.ibm.com/support/docview.wss?uid=isg1IZ48500

www.ibm.com/support/docview.wss?uid=isg1IZ48501

www.ibm.com/support/docview.wss?uid=isg1IZ48502

www.ibm.com/support/docview.wss?uid=isg1IZ48561

www.ibm.com/support/docview.wss?uid=isg1IZ48562

www.securityfocus.com/bid/34543

www.securitytracker.com/id?1022065

www.vupen.com/english/advisories/2009/1056

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6402

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.3%

JSON

Related for CVE-2009-1355

nessus16 prion1 cvelist1 nvd1