Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

AIX 5.3 TL 7 : printers.rte (U815841)

🗓️ 12 Feb 2008 00:00:00Reported by TenableType 
nessus
 nessus🔗 www.tenable.com👁 22 Views

The package printers.rte on AIX 5.3 TL 7 is missing the security-related PTF U815841, enabling a local attacker to execute code with root privileges through buffer overflow vulnerabilities

Related
Refs
Code
ReporterTitlePublishedViews
Family
Tenable Nessus		AIX 5.2 TL 0 : pioout (IZ10840)
30 Jan 201300:00
nessus
Tenable Nessus		AIX 5.3 TL 0 : pioout (IZ10841)
30 Jan 201300:00
nessus
Tenable Nessus		AIX 5.3 TL 7 : pioout (IZ10842)
30 Jan 201300:00
nessus
Tenable Nessus		AIX 6.1 TL 0 : pioout (IZ10844)
30 Jan 201300:00
nessus
Tenable Nessus		AIX 5.3 TL 6 : printers.rte (U814192)
12 Feb 200800:00
nessus
Tenable Nessus		AIX 5.2 TL 10 : printers.rte (U815029)
13 May 200800:00
nessus
Tenable Nessus		AIX 6.1 : printers.rte (U815329)
27 Feb 200800:00
nessus
CVE		CVE-2007-5764
25 Jan 200800:00
cve
Cvelist		CVE-2007-5764
25 Jan 200800:00
cvelist
EUVD		EUVD-2007-5734
7 Oct 202500:30
euvd
Rows per page
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were extracted
# from AIX Security PTF U815841. The text itself is copyright (C)
# International Business Machines Corp.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(31008);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2007-5764");

  script_name(english:"AIX 5.3 TL 7 : printers.rte (U815841)");
  script_summary(english:"Check for PTF U815841");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote AIX host is missing a vendor-supplied security patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The remote host is missing AIX PTF U815841, which is related to the
security of the package printers.rte.

Buffer overflow vulnerabilities exist in the 'printers.rte' fileset
commands listed below. A local attacker may execute arbitrary code
with root privileges because the commands are setuid root.

The following commands are vulnerable :

/usr/lib/lpd/pio/etc/pioout The fix for piomkpq for IZ01121 and
IZ01122 was not included with this fix package, therefore it has been
repackged and included as described below. A local attacker who is a
member of the printq group may execute arbitrary code with root
privileges because the piomkpq command is setuid root. The following
command is vulnerable: /usr/lib/lpd/pio/etc/piomkpq."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www-01.ibm.com/support/docview.wss?uid=isg1IZ10842"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Install the appropriate missing security-related fix."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:5.3");

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/12/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2007/12/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/02/12");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.");
  script_family(english:"AIX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AIX/oslevel", "Host/AIX/version", "Host/AIX/lslpp");

  exit(0);
}



include("audit.inc");
include("global_settings.inc");
include("aix.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);

flag = 0;

if ( aix_check_patch(ml:"530007", patch:"U815841", package:"printers.rte.5.3.7.1") < 0 ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Jan 2021 00:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 27.2
EPSS0.0007
aix 5.3 tl 7printers.rtemissing ptfbuffer overflowlocal attackerroot privilegescode execution
22