Vulnerability Note VU#602300
AIX "getconf" contains buffer overflow vulnerability
IBM AIX getconf contains a buffer overflow vulnerability that may lead to arbitrary code execution.
IBM AIX contains the getconf command that provides information about system configuration. An unspecified buffer overflow condition has been identified in getconf and may lead to arbitrary code execution by local users.
Local, authenticated users may be able to execute arbitrary code.
Apply an update
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|IBM Corporation||Affected||-||29 Sep 2005|
CVSS Metrics (Learn More)
Thanks to IBM for reporting this vulnerability.
This document was written by Ken MacInnis.
- CVE IDs: CAN-2005-3060
- Date Public: 29 Sep 2005
- Date First Published: 29 Sep 2005
- Date Last Updated: 29 Sep 2005
- Severity Metric: 10.13
- Document Revision: 4
If you have feedback, comments, or additional information about this vulnerability, please send us email.