Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-2179IBM AIX vulnerability

CWE-2644 documents4 sources
Severity
6.9MEDIUMNVD
EPSS
0.4%
top 41.09%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
IBM AIX
Timeline
PublishedJun 22
Latest updateMay 17

Description

libodm.a in IBM AIX 5.3, 6.1, and 7.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDibm/aix5.3, 6.1, 7.1+2

Patches

Patch: aix.software.ibm.comPatch: aix.software.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-jpvf-8hj8-56qq: libodm2022-05-17
CVEList
CVE-2012-2179: libodm2012-06-22

💥Exploits & PoCs

1
Exploit-DB
IBM AIX 6.1.8 - 'libodm' Arbitrary File Write2014-06-12
CVE-2012-2179 — IBM AIX vulnerability | cvebase