Oval Definition:oval:org.mitre.oval:def:25009
Revision Date:2014-08-11Version:14
Title:Arbitary file overwrite symlink in libodm
Description:libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-3977
Platform(s):IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis
  • platforms
  • IBM AIX 6.1 is installed
  • OR IBM AIX 7.1 is installed
  • AND filesets
  • File Version Exists
  • bos.rte.odm greater than or equal 6.1.7.0
  • AND bos.rte.odm less than or equal 6.1.7.16
  • OR File Version Exists
  • bos.rte.odm greater than or equal 6.1.8.0
  • AND bos.rte.odm less than or equal 6.1.8.0
  • OR File Version Exists
  • bos.rte.odm greater than or equal 6.1.9.0
  • AND bos.rte.odm less than or equal 6.1.9.0
  • OR File Version Exists
  • bos.rte.odm greater than or equal 7.1.1.0
  • AND bos.rte.odm less than or equal 7.1.1.16
  • OR File Version Exists
  • bos.rte.odm greater than or equal 7.1.2.0
  • AND bos.rte.odm less than or equal 7.1.2.15
  • OR File Version Exists
  • bos.rte.odm greater than or equal 7.1.3.0
  • AND bos.rte.odm less than or equal 7.1.3.0
    • BACK