Vulnerability Details CVE-2009-0536
at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.0%
CVSS Severity
CVSS v2 Score 4.9
References
- http://aix.software.ibm.com/aix/efixes/security/at_advisory.asc
- http://osvdb.org/51952
- http://secunia.com/advisories/33915
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43452
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43453
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43454
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43455
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43456
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43457
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43458
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43459
- http://www.securityfocus.com/bid/33730
- http://www.securitytracker.com/id?1021704
- http://www.vupen.com/english/advisories/2009/0405
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48660
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6155
- http://aix.software.ibm.com/aix/efixes/security/at_advisory.asc
- http://osvdb.org/51952
- http://secunia.com/advisories/33915
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43452
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43453
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43454
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43455
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43456
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43457
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43458
- http://www.ibm.com/support/docview.wss?uid=isg1IZ43459
- http://www.securityfocus.com/bid/33730
- http://www.securitytracker.com/id?1021704
- http://www.vupen.com/english/advisories/2009/0405
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48660
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6155
Products affected by CVE-2009-0536
-
cpe:2.3:o:ibm:aix:5.2.0
-
cpe:2.3:o:ibm:aix:5.3.0
-
cpe:2.3:o:ibm:aix:5.3.7
-
cpe:2.3:o:ibm:aix:5.3.8
-
cpe:2.3:o:ibm:aix:5.3.9
-
cpe:2.3:o:ibm:aix:6.1.0
-
cpe:2.3:o:ibm:aix:6.1.1
-
cpe:2.3:o:ibm:aix:6.1.2