Vulnerabilities > CVE-2003-0784 - Unspecified vulnerability in IBM AIX 4.3.3/5.1/5.2

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

ibm

critical

NVD

Published: 2003-10-06

Updated: 2008-09-10

Summary

Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers.

Vulnerable Configurations

Part	Description	Count
OS	Ibm IBM AIX 4.3.3 IBM AIX 5.1 IBM AIX 5.2	3

References

http://www-1.ibm.com/support/search.wss?rs=0&q=IY47764&apar=only