Overview
IBM AIX contains a buffer-overflow vulnerability that may allow remote attackers to gain root privileges.
Description
Some versions of IBM AIX used unbounded string operators. This problem was corrected in AIXV4 by changing the unbounded operators to their bounded equivalents. |
Impact
Remote attackers may be able to gain root privileges. |
Solution
Apply a patch from your vendor See the Vendor Status section for more information. |
Vendor Information
209363
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to IBM for reporting this vulnerability.
This document was written by Shawn Van Ittersum.
Other Information
| CVE IDs: | None |
| Severity Metric: | 14.96 |
| Date Public: | 2002-03-28 |
| Date First Published: | 2002-09-16 |
| Date Last Updated: | 2002-09-16 21:59 UTC |
| Document Revision: | 4 |