CVE-2012-2200 — IBM Vios vulnerability

CWE-2643 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 79.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX IBM Vios

Timeline

PublishedJun 27

Latest updateMay 13

Description

The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges by entering a command in a .forward file in a home directory.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDibm/vios2.2.1.4

▶NVDibm/aix6.1, 7.1+1

🔴Vulnerability Details

GHSA

GHSA-46q5-4w2h-f55p: The default configuration of sendmail in IBM AIX 6↗2022-05-13

▶

CVEList

CVE-2012-2200: The default configuration of sendmail in IBM AIX 6↗2012-06-27

▶