Vulnerabilities > CVE-2003-0170 - Administrative Access vulnerability in IBM AIX 5.2

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
ibm
critical
nessus
NVD
Published: 2004-03-29
Updated: 2017-07-11

Summary

Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors.

Vulnerable Configurations

Part Description Count
OS
Ibm
1

Nessus

NASL familyAIX Local Security Checks
NASL idAIX_IY42424.NASL
descriptionThe remote host is missing AIX Critical Security Patch number IY42424 (SECURITY: Native GSSAPI ftpd incorrectly authenticates). You should install this patch for your system to be up-to-date.
last seen2020-06-01
modified2020-06-02
plugin id14399
published2004-08-27
reporterThis script is Copyright (C) 2004-2010 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/14399
titleAIX 5.2 : IY42424

References