CVE-1999-1552 — IBM AIX vulnerability

4 documents4 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 64.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedJul 20

Latest updateApr 16

Description

dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/aix3.2.5+3

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

VulDB

IBM AIX 3.1/3.2/3.2.4/3.2.5 dpsexec Local Privilege Escalation (BID-358)↗2026-04-16

▶

GHSA

GHSA-8gvm-3v25-425g: dpsexec (DPS Server) when running under XDM in IBM AIX 3↗2022-04-30

▶

CVEList

CVE-1999-1552: dpsexec (DPS Server) when running under XDM in IBM AIX 3↗2001-09-12

▶