Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-4003 — IBM AIX vulnerability

4 documents4 sources

Severity

6.9MEDIUMNVD

EPSS

0.1%

top 69.00%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

IBM AIX

Timeline

PublishedJul 26

Latest updateMay 3

Description

pioout in IBM AIX 5.3 SP6 allows local users to execute arbitrary code by specifying a malicious library with the -R (ParseRoutine) command line argument.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/aix5.3

🔴Vulnerability Details

GHSA

GHSA-9h37-wfmr-j7fv: pioout in IBM AIX 5↗2022-05-03

▶

CVEList

CVE-2007-4003: pioout in IBM AIX 5↗2007-07-26

▶

💥Exploits & PoCs

Exploit-DB

IBM AIX 5.3 SP6 - 'pioout' Arbitrary Library Loading Privilege Escalation↗2007-07-27

▶