2 matches found
CVE-2013-3005
CVE-2013-3005 affects the IBM AIX 6.1 and 7.1 TFTP client (and VIOS 2.2.2.2-FP-26 SP-02) where, with RBAC enabled, remote authenticated users can bypass file ownership restrictions and read or overwrite arbitrary files via tftp. Connected advisories document this as a client-side TFTP RBAC bypass...
tftp Security Vulnerability
IBM SECURITY ADVISORY First Issued: Wed Jul 3 09:33:57 CDT 2013 | Updated: Mon Oct 14 20:17:56 CDT 2013 | Update: Fixed vulnerable fileset levels | Update: More workarounds and CVSS Vector | Update: Includes VIOS in the vulnerability summary | Updated: Thu Dec 12 12:55:11 CST 2013 | Update: 1...