CVE-2006-5010

Опубликовано: 27 сент. 2006

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the path to point to a malicious mkdir program.

Ссылки

ftp://aix.software.ibm.com/aix/efixes/security/README
Patch
http://secunia.com/advisories/22213
http://securitytracker.com/id?1016965
http://www-1.ibm.com/support/docview.wss?uid=isg1IY88681
http://www.vupen.com/english/advisories/2006/3770
http://www.vupen.com/english/advisories/2006/3871
https://exchange.xforce.ibmcloud.com/vulnerabilities/29163
ftp://aix.software.ibm.com/aix/efixes/security/README
Patch
http://secunia.com/advisories/22213
http://securitytracker.com/id?1016965
http://www-1.ibm.com/support/docview.wss?uid=isg1IY88681
http://www.vupen.com/english/advisories/2006/3770
http://www.vupen.com/english/advisories/2006/3871
https://exchange.xforce.ibmcloud.com/vulnerabilities/29163

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 17%

0.00054

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-26fr-9hjv-9fj7

github

больше 3 лет назад