Oval Definition:oval:org.mitre.oval:def:6276
Revision Date:2009-08-31Version:11
Title:Malloc subsystem in libc in IBM AIX 5.3 and 6.1 vulnerability.
Description:The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack on the log file associated with the MALLOCDEBUG environment variable.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1786
Platform(s):IBM AIX 5.3
IBM AIX 6.1
Product(s):
Definition Synopsis
  • IBM AIX 5300-00 meets CVE-2009-1786
  • IBM AIX 5300-00 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 5.3.0.0
  • AND The level of fileset bos.rte.libc is less than or equal 5.3.0.71
  • AND The level of fileset bos.adt.prof is greater than or equal 5.3.0.0
  • AND The level of fileset bos.adt.prof is less than or equal 5.3.0.71
  • AND NOT All filesets for APAR IZ50500 are installed
  • OR IBM AIX 5300-01 through 5300-06 always meets CVE-2009-1786
  • IBM AIX 5300-01 through 5300-06 is installed
  • AND Fileset bos.rte.libc is installed
  • AND Fileset bos.adt.prof is installed
  • OR IBM AIX 5300-07 meets CVE-2009-1786
  • IBM AIX 5300-07 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 5.3.7.0
  • AND The level of fileset bos.rte.libc is less than or equal 5.3.7.8
  • AND The level of fileset bos.adt.prof is greater than or equal 5.3.7.0
  • AND The level of fileset bos.adt.prof is less than or equal 5.3.7.8
  • AND NOT All filesets for APAR IZ50517 are installed
  • OR IBM AIX 5300-08 meets CVE-2009-1786
  • IBM AIX 5300-08 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 5.3.8.0
  • AND The level of fileset bos.rte.libc is less than or equal 5.3.8.5
  • AND The level of fileset bos.adt.prof is greater than or equal 5.3.8.0
  • AND The level of fileset bos.adt.prof is less than or equal 5.3.8.5
  • AND NOT All filesets for APAR IZ50447 are installed
  • OR IBM AIX 5300-09 meets CVE-2009-1786
  • IBM AIX 5300-09 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 5.3.9.0
  • AND The level of fileset bos.rte.libc is less than or equal 5.3.9.2
  • AND The level of fileset bos.adt.prof is greater than or equal 5.3.9.0
  • AND The level of fileset bos.adt.prof is less than or equal 5.3.9.2
  • AND NOT All filesets for APAR IZ50445 are installed
  • OR IBM AIX 6100-00 meets CVE-2009-1786
  • IBM AIX 6100-00 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 6.1.0.0
  • AND The level of fileset bos.rte.libc is less than or equal 6.1.0.9
  • AND The level of fileset bos.adt.prof is greater than or equal 6.1.0.0
  • AND The level of fileset bos.adt.prof is less than or equal 6.1.0.9
  • AND NOT All filesets for APAR IZ50139 are installed
  • OR IBM AIX 6100-01 meets CVE-2009-1786
  • IBM AIX 6100-01 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 6.1.1.0
  • AND The level of fileset bos.rte.libc is less than or equal 6.1.1.4
  • AND The level of fileset bos.adt.prof is greater than or equal 6.1.1.0
  • AND The level of fileset bos.adt.prof is less than or equal 6.1.1.4
  • AND NOT All filesets for APAR IZ50129 are installed
  • OR IBM AIX 6100-02 meets CVE-2009-1786
  • IBM AIX 6100-02 is installed
  • AND The level of fileset bos.rte.libc is greater than or equal 6.1.2.0
  • AND The level of fileset bos.rte.libc is less than or equal 6.1.2.3
  • AND The level of fileset bos.adt.prof is greater than or equal 6.1.2.0
  • AND The level of fileset bos.adt.prof is less than or equal 6.1.2.3
  • AND NOT All filesets for APAR IZ50121 are installed
    • BACK