Vulnerabilities > CVE-2003-1018 - Unspecified vulnerability in IBM AIX 4.3.3/5.1/5.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ibm
nessus
Summary
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors.
Nessus
NASL family AIX Local Security Checks NASL id AIX_IY45329.NASL description The remote host is missing AIX Critical Security Patch number IY45329 (SECURITY: Format string vulnerability in /usr/bin/enq and). You should install this patch for your system to be up-to-date. last seen 2020-06-01 modified 2020-06-02 plugin id 14414 published 2004-08-27 reporter This script is Copyright (C) 2004-2010 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14414 title AIX 5.2 : IY45329 code # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(14414); script_version ("$Revision: 1.11 $"); script_cve_id("CVE-2003-1018"); script_bugtraq_id(9254); name["english"] = "AIX 5.2 : IY45329"; script_name(english:name["english"]); script_set_attribute(attribute:"synopsis", value: "The remote host is missing a vendor-supplied security patch" ); script_set_attribute(attribute:"description", value: "The remote host is missing AIX Critical Security Patch number IY45329 (SECURITY: Format string vulnerability in /usr/bin/enq and). You should install this patch for your system to be up-to-date." ); script_set_attribute(attribute:"solution", value: "http://www-912.ibm.com/eserver/support/fixes/" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_publication_date", value: "2004/08/27"); script_cvs_date("$Date: 2010/10/06 01:17:51 $"); script_end_attributes(); summary["english"] = "Check for patch IY45329"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2010 Tenable Network Security, Inc."); family["english"] = "AIX Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/AIX/lslpp"); exit(0); } include("aix.inc"); if( aix_check_patch(release:"5.2", patch:"IY45329", package:"bos.rte.printers.5.2.0.11") < 0 ) security_hole();NASL family AIX Local Security Checks NASL id AIX_IY46255.NASL description The remote host is missing AIX Critical Security Patch number IY46255 (SECURITY: Format string vulnerability in /usr/bin/enq and). You should install this patch for your system to be up-to-date. last seen 2020-06-01 modified 2020-06-02 plugin id 14420 published 2004-08-27 reporter This script is Copyright (C) 2004-2010 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14420 title AIX 5.1 : IY46255
References
- http://www.securityfocus.com/bid/9254
- http://www.securityfocus.com/bid/9254
- http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-20
- http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-20
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14037