PT-2006-1723 · Ibm · Aix

Published

2006-03-10

·

Updated

2011-03-08

·

CVE-2006-0667

CVSS v2.0

4.6

Medium

VectorAV:L/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions IBM AIX versions 5.2 through 5.3
Description The issue allows local users to modify arbitrary files via a symlink attack using lscfg.
Recommendations For IBM AIX versions 5.2 through 5.3, consider restricting access to the lscfg command until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2006-0667

Affected Products

Aix