4 matches found
AIX 6.1 TL 5 : bos.rte.security (U849827)
The remote host is missing AIX PTF U849827, which is related to the security of the package bos.rte.security. AIX could allow a local attacker to gain elevated privileges on the system, caused by an error in the getpwnam function when customer extended LDAP user filtering is configured. A local...
AIX 7.1 TL 0 : ldapauth (IV19098)
AIX could allow a local attacker to gain elevated privileges on the system, caused by an error in the getpwnam function when customer extended LDAP user filtering is configured. A local attacker could exploit this vulnerability to gain lateral or elevated privileges on the system. %NASLMINLEVEL...
IBM AIX 'getpwnam()'本地权限提升漏洞(CVE-2012-0745)
BUGTRAQ ID: 53393 CVE ID: CVE-2012-0745 AIX是一个基于开放标准的UNIX操作系统,为用户提供企业信息技术基础架构。 IBM AIX 5.3、6.1、7.1在实现上存在本地权限提升漏洞,本地攻击者可利用此漏洞获取提升的权限。 0 IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 厂商补丁: IBM --- IBM已经为此发布了一个安全公告(ldapauthadvisory2)以及相应补丁: ldapauthadvisory2:Vulnerability in LDAP Authentication...
CVE-2012-0745
CVE-2012-0745 affects IBM AIX 5.3, 6.1, 7.1 and VIOS 2.1.0.10 through 2.2.1.3. The root cause is an error in getpwnam() interaction with customer-extended LDAP user filtering, which can allow a local attacker to gain elevated privileges. The vulnerability leads to local privilege escalation (and ...