Vulnerability Details CVE-2009-0370
Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.0%
CVSS Severity
CVSS v2 Score 7.2
References
- http://aix.software.ibm.com/aix/efixes/security/rmsock_advisory.asc
- http://www.ibm.com/support/docview.wss?uid=isg1IZ40386
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41510
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41593
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41599
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42785
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42786
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42787
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42788
- http://www.securityfocus.com/bid/33522
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6028
- http://aix.software.ibm.com/aix/efixes/security/rmsock_advisory.asc
- http://www.ibm.com/support/docview.wss?uid=isg1IZ40386
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41510
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41593
- http://www.ibm.com/support/docview.wss?uid=isg1IZ41599
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42785
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42786
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42787
- http://www.ibm.com/support/docview.wss?uid=isg1IZ42788
- http://www.securityfocus.com/bid/33522
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6028
Products affected by CVE-2009-0370
-
cpe:2.3:o:ibm:aix:5.2
-
cpe:2.3:o:ibm:aix:5.2.2
-
cpe:2.3:o:ibm:aix:5.2_l
-
cpe:2.3:o:ibm:aix:5.3
-
cpe:2.3:o:ibm:aix:5.3.7
-
cpe:2.3:o:ibm:aix:5.3.8
-
cpe:2.3:o:ibm:aix:5.3.9
-
cpe:2.3:o:ibm:aix:5.3_l
-
cpe:2.3:o:ibm:aix:6.1
-
cpe:2.3:o:ibm:aix:6.1.1
-
cpe:2.3:o:ibm:aix:6.1.2