Notified:  April 22, 2002 Updated: June 06, 2002

Status

Affected

Vendor Statement

"The commands and their arguments are not accessible by ordinary users, and it is unlikely an exploit could be crafted in any case. "Customers who use AIX v4.3.x need only to apply APAR# 27310 to eliminate the buffer overflow."

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.