Vulnerability CVE-2016-8972


Published: 2017-02-15

Description:
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
IBM AIX 6.1 / 7.1 / 7.2 Bellmail Privilege Escalation
RSL
23.12.2016

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

Vendor: IBM
Product: AIX 
Version:
7.2
7.1
6.1
Product: VIOS 
Version:
2.2.5.10
2.2.5.0
2.2.4.30
2.2.4.23
2.2.4.22
2.2.4.21
2.2.4.10
2.2.4.0
2.2.3.80
2.2.3.70
2.2.3.60
2.2.3.52
2.2.3.51
2.2.3.50
2.2.3.4
2.2.3.3
2.2.3.2
2.2.3.1
2.2.3.0
2.2.2.70
2.2.2.6
2.2.2.4
2.2.2.3
2.2.2.2
2.2.2.1
2.2.2.0
2.2.1.8
2.2.1.7
2.2.1.6
2.2.1.5
2.2.1.4
2.2.1.3
2.2.1.1
2.2.1.0
2.2.0.13
2.2.0.12
2.2.0.11
2.2.0.10
2.2.0.0

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://aix.software.ibm.com/aix/efixes/security/bellmail_advisory.asc
http://www.securityfocus.com/bid/94979
http://www.securitytracker.com/id/1037480

Related CVE
CVE-2017-1746
IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 135...
CVE-2017-1696
IBM QRadar 7.2 and 7.3 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Fo...
CVE-2017-1423
IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs that are configured for usage by the Web Application Bridge component. IBM X-Force ID: 127476.
CVE-2017-1494
IBM Business Process Manager 8.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a t...
CVE-2017-1727
IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 discloses sensitive information in error messages that could aid an attacker in further attacks against the system. IBM X-Force ID: 134869.
CVE-2017-1699
IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. A local attacker could exploit this vulnerability to modify or delete data contained in the files with an unknown impact. IBM X-Force ID: 134391.
CVE-2017-1673
IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...
CVE-2017-1672
IBM Tivoli Key Lifecycle Manager 2.6 and 2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 133639.

Copyright 2018, cxsecurity.com

 

Back to Top