CVE-2005-3289 — IBM AIX vulnerability

3 documents3 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 66.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedOct 23

Latest updateMay 1

Description

LSCFG in IBM AIX 5.2 and 5.3 does not create temporary files securely, which allows local users to corrupt /etc/passwd and possibly other system files via the trace file.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/aix5.2, 5.3+1

🔴Vulnerability Details

GHSA

GHSA-pv5g-gpjf-g9xg: LSCFG in IBM AIX 5↗2022-05-01

▶

CVEList

CVE-2005-3289: LSCFG in IBM AIX 5↗2005-10-23

▶