CVE-2007-4795Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM AIX

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 84.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM AIX
Timeline
PublishedSep 10
Latest updateMay 1

Description

Buffer overflow in mkpath in bos.rte.methods in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long ODM name.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDibm/aix5.2, 5.3+1

Patches

Patch: secunia.comPatch: www-1.ibm.comPatch: www-1.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-xj7p-qq9q-4h6h: Buffer overflow in mkpath in bos2022-05-01
CVEList
CVE-2007-4795: Buffer overflow in mkpath in bos2007-09-10

💥Exploits & PoCs

1
Exploit-DB
Microsoft MFC Library - CFileFind::FindFile Buffer Overflow2007-09-14
CVE-2007-4795 — IBM AIX vulnerability | cvebase