CVE-2003-1018Use of Externally-Controlled Format String in IBM AIX

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 83.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM AIX
Timeline
PublishedMar 29
Latest updateApr 29

Description

Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDibm/aix4.3.3, 5.1, 5.2+2

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-g3fv-7hhx-vqxx: Format string vulnerability in enq command in AIX 42022-04-29
CVEList
CVE-2003-1018: Format string vulnerability in enq command in AIX 42004-03-10

💥Exploits & PoCs

1
Exploit-DB
WrenSoft Zoom Search Engine 2.0 Build: 1018 - Cross-Site Scripting2003-10-14
CVE-2003-1018 — IBM AIX vulnerability | cvebase