Vulnerability CVE-2003-0784

Vulnerability Name:

CVE-2003-0784 (CCN-13266)

Assigned:

2003-08-21

Published:

2003-08-21

Updated:

2008-09-10

Summary:

Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers.

CVSS v3 Severity:

9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2003-0784

Source: CCN
Type: IBM APAR IY47764
Format String Error in /usr/sbin/tsm

Source: AIXAPAR
Type: UNKNOWN
IY47764

Source: CCN
Type: OSVDB ID: 2161
IBM AIX tsm Format String Privilege Escalation

Source: CCN
Type: BID-8648
IBM AIX tsm Utility Local Format String Vulnerability

Source: XF
Type: UNKNOWN
aix-tsm-format-string(13266)

Vulnerable Configuration:

Configuration 1:

cpe:/o:ibm:aix:4.3.3:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:5.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:5.2:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:ibm:aix:5.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK