PT-2009-3189 · Ibm · Ibm Aix

Published

2009-02-11

Updated

2017-09-29

CVE-2009-0536

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM AIX versions 5.2.0, 5.3.0 through 5.3.9, 6.1.0 through 6.1.2

Description The issue allows local users to read arbitrary files via unspecified vectors, related to a failure to drop root privileges in the bos.rte.cron component.

Recommendations For IBM AIX version 5.2.0, update to a version that fixes the issue. For IBM AIX versions 5.3.0 through 5.3.9, update to a version that fixes the issue. For IBM AIX versions 6.1.0 through 6.1.2, update to a version that fixes the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2009-0536

Affected Products

Ibm Aix

PT-2009-3189 · Ibm · Ibm Aix

CVE-2009-0536

Weakness Enumeration

Related Identifiers

Affected Products

References · 18