CVE-2000-1122Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM AIX

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 86.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM AIX
Timeline
PublishedJan 9
Latest updateApr 30

Description

Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDibm/aix6 versions+5

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-qg65-w45w-rw2w: Buffer overflow in setclock command in IBM AIX 42022-04-30
CVEList
CVE-2000-1122: Buffer overflow in setclock command in IBM AIX 42001-05-07

💥Exploits & PoCs

1
Exploit-DB
Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readStrings2019-07-10
CVE-2000-1122 — IBM AIX vulnerability | cvebase