| Vulnerability Name: | CVE-1999-1405 (CCN-7560) | ||||||||
| Assigned: | 1999-02-17 | ||||||||
| Published: | 1999-02-17 | ||||||||
| Updated: | 2016-10-18 | ||||||||
| Summary: | snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. Fixed in AIX 4.3 and 4.3.2 AIX 4.3.x APAR: IX88263 AIX 4.2.x APAR: IX88261 | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Wed, 17 Feb 1999 10:17:08 -0500 snap utility for AIX. Source: CCN Type: BugTraq Mailing List, Thu, 18 Feb 1999 14:25:57 -0600 Re: snap utility for AIX. Source: MITRE Type: CNA CVE-1999-1405 Source: BUGTRAQ Type: UNKNOWN 19990217 snap utility for AIX. Source: BUGTRAQ Type: UNKNOWN 19990220 Re: snap utility for AIX. Source: CCN Type: IBM AIX Fix Distribution Service APAR IX88261 Source: CCN Type: OSVDB ID: 8017 IBM AIX snap /tmp/ibmsupt Shadowed Password File Disclosure Source: BID Type: Exploit 375 Source: CCN Type: BID-375 AIX snap Insecure Temporary File Creation Vulnerability Source: XF Type: UNKNOWN aix-snap-insecure-tmp(7560) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||