CVE-2005-0250

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Format string vulnerability in auditselect on IBM AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via format string specifiers in a command line argument.

Ссылки

http://secunia.com/advisories/14198
Vendor Advisory
http://securitytracker.com/id?1013103
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67472
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67519
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67802
Vendor Advisory
http://www.idefense.com/application/poi/display?id=193&type=vulnerabilities&flashstatus=false
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/896729
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12496
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/19255
http://secunia.com/advisories/14198
Vendor Advisory
http://securitytracker.com/id?1013103
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67472
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67519
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=isg1IY67802
Vendor Advisory
http://www.idefense.com/application/poi/display?id=193&type=vulnerabilities&flashstatus=false
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/896729
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12496
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/19255

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00114

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9pqx-47j4-9jr5

github

почти 4 года назад