Vulnerability Note VU#209363
IBM AIX vulnerable to buffer overflow in RCP
IBM AIX contains a buffer-overflow vulnerability that may allow remote attackers to gain root privileges.
Some versions of IBM AIX used unbounded string operators. This problem was corrected in AIXV4 by changing the unbounded operators to their bounded equivalents.
Remote attackers may be able to gain root privileges.
Apply a patch from your vendor
See the Vendor Status section for more information.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|IBM||Affected||22 Apr 2002||07 Jun 2002|
CVSS Metrics (Learn More)
Thanks to IBM for reporting this vulnerability.
This document was written by Shawn Van Ittersum.
- CVE IDs: Unknown
- Date Public: 28 Mar 2002
- Date First Published: 16 Sep 2002
- Date Last Updated: 16 Sep 2002
- Severity Metric: 14.96
- Document Revision: 4
If you have feedback, comments, or additional information about this vulnerability, please send us email.