Vulnerability Details CVE-2014-0899
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and modify arbitrary files via FTP commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.8%
CVSS Severity
CVSS v2 Score 6.5
References
- http://aix.software.ibm.com/aix/efixes/security/wparcre_advisory.asc
- http://www.ibm.com/support/docview.wss?uid=isg1IV51420
- http://www.ibm.com/support/docview.wss?uid=isg1IV51421
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91396
- http://aix.software.ibm.com/aix/efixes/security/wparcre_advisory.asc
- http://www.ibm.com/support/docview.wss?uid=isg1IV51420
- http://www.ibm.com/support/docview.wss?uid=isg1IV51421
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91396