CVE-2007-4794Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM AIX

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 85.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM AIX
Timeline
PublishedSep 10
Latest updateMay 1

Description

Buffer overflow in fcstat in devices.common.IBM.fc.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long input parameter.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDibm/aix5.2, 5.3+1

Patches

Patch: secunia.comPatch: www-1.ibm.comPatch: www-1.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-vj4m-2cfx-j3r7: Buffer overflow in fcstat in devices2022-05-01
CVEList
CVE-2007-4794: Buffer overflow in fcstat in devices2007-09-10
CVE-2007-4794 — IBM AIX vulnerability | cvebase