ID CVE-2006-5009
Summary Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbitrary files via unspecified vectors, possibly involving a buffer overflow.
References
Vulnerable Configurations
  • cpe:2.3:o:ibm:aix:5.2.0:*:*:*:*:*:*:*
    cpe:2.3:o:ibm:aix:5.2.0:*:*:*:*:*:*:*
  • cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*
    cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 20-07-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
aixapar
  • IY87894
  • IY87943
bid 20201
confirm ftp://aix.software.ibm.com/aix/efixes/security/README
sectrack 1016923
secunia 22098
vupen ADV-2006-3770
xf aix-xlock-bo(29161)
Last major update 20-07-2017 - 01:33
Published 27-09-2006 - 01:07
Last modified 20-07-2017 - 01:33
Back to Top