CVE-2006-1246

Опубликовано: 17 мар. 2006

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Unspecified vulnerability in mklvcopy in BOS.RTE.LVM in IBM AIX 5.3 allows local users to execute arbitrary commands when mklvcopy calls external commands, possibly due to an untrusted search path vulnerability.

Ссылки

http://attrition.org/pipermail/vim/2006-March/000641.html
http://secunia.com/advisories/19235
Patch
Vendor Advisory
http://securitytracker.com/id?1015786
http://www-1.ibm.com/support/docview.wss?uid=isg1IY82739
http://www.nsfocus.com/english/homepage/research/0602.htm
Patch
Vendor Advisory
http://www.osvdb.org/23921
http://www.securityfocus.com/bid/17115
http://www.vupen.com/english/advisories/2006/0957
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25299
https://exchange.xforce.ibmcloud.com/vulnerabilities/25849
http://attrition.org/pipermail/vim/2006-March/000641.html
http://secunia.com/advisories/19235
Patch
Vendor Advisory
http://securitytracker.com/id?1015786
http://www-1.ibm.com/support/docview.wss?uid=isg1IY82739
http://www.nsfocus.com/english/homepage/research/0602.htm
Patch
Vendor Advisory
http://www.osvdb.org/23921
http://www.securityfocus.com/bid/17115
http://www.vupen.com/english/advisories/2006/0957
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25299
https://exchange.xforce.ibmcloud.com/vulnerabilities/25849

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00063

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-jg2r-x5fp-rqwm

github

почти 4 года назад