Vulnerabilities > CVE-2004-0544 - Buffer Overflow vulnerability in IBM AIX 4.3.3/5.1/5.2
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands.
Exploit-Db
description AIX 4.3.3/5.x Getlvcb Command Line Argument Buffer Overflow Vulnerability (2). CVE-2004-0544. Local exploit for aix platform id EDB-ID:23841 last seen 2016-02-02 modified 2004-03-17 published 2004-03-17 reporter mattox source https://www.exploit-db.com/download/23841/ title AIX 4.3.3/5.x Getlvcb Command Line Argument Buffer Overflow Vulnerability 2 description AIX 4.3.3/5.x Getlvcb Command Line Argument Buffer Overflow Vulnerability (1). CVE-2004-0544. Local exploit for aix platform id EDB-ID:23840 last seen 2016-02-02 modified 2003-05-30 published 2003-05-30 reporter watercloud source https://www.exploit-db.com/download/23840/ title AIX 4.3.3/5.x Getlvcb Command Line Argument Buffer Overflow Vulnerability 1
Nessus
NASL family AIX Local Security Checks NASL id AIX_IY55682.NASL description The remote host is missing AIX Critical Security Patch number IY55682 (SECURITY: Possible buffer overflow in putlvcb command). You should install this patch for your system to be up-to-date. last seen 2020-06-01 modified 2020-06-02 plugin id 14437 published 2004-08-27 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14437 title AIX 5.2 : IY55682 NASL family AIX Local Security Checks NASL id AIX_IY55681.NASL description The remote host is missing AIX Critical Security Patch number IY55681 (SECURITY: Possible buffer overflow in putlvcb command). You should install this patch for your system to be up-to-date. last seen 2020-06-01 modified 2020-06-02 plugin id 14622 published 2004-09-01 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14622 title AIX 5.1 : IY55681
References
- http://secunia.com/advisories/11158/
- http://www.ciac.org/ciac/bulletins/o-131.shtml
- http://www.osvdb.org/4392
- http://www.osvdb.org/4393
- http://www.securityfocus.com/bid/9905
- http://www.securityfocus.com/bid/9906
- http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.0544.2
- http://www-1.ibm.com/support/docview.wss?uid=isg1IY55681
- http://www-1.ibm.com/support/docview.wss?uid=isg1IY55682
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15555
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18317