Oval Definition:	oval:org.cisecurity:def:266
Revision Date: 2016-02-08 Version: 10 Title: AIX Use-after-free Vulnerability in the mm_answer_pam_free_ctx function Description: Use-after-free vulnerability in the mm_answer_pam_free_ctx function in sshd might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2015-6564 Platform(s): IBM AIX 6.1 IBM AIX 7.1 Product(s): Definition Synopsis platforms IBM AIX 6.1 is installed OR IBM AIX 7.1 is installed AND File Version Exists openssh.base.server greater than or equal 4.0.0.5200 AND openssh.base.server less than or equal 6.0.0.6201 AND NOT Interim fix 6201_ifix.151009 (vuid: 00F850C34C00100901103415) is installed
BACK