CVE-2010-3405

high

Description

Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1, 5.3, and earlier and VIOS 2.1, 1.5, and earlier allows local users to leverage system group membership and gain privileges via unspecified vectors.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12214

https://exchange.xforce.ibmcloud.com/vulnerabilities/61774

http://www.vupen.com/english/advisories/2010/2377

http://www.securityfocus.com/bid/43207

http://www.ibm.com/support/docview.wss?uid=isg1IZ84167

http://www.ibm.com/support/docview.wss?uid=isg1IZ83975

http://www.ibm.com/support/docview.wss?uid=isg1IZ83942

http://www.ibm.com/support/docview.wss?uid=isg1IZ83909

http://www.ibm.com/support/docview.wss?uid=isg1IZ82630

http://www.ibm.com/support/docview.wss?uid=isg1IZ82245

http://www.ibm.com/support/docview.wss?uid=isg1IZ81819

http://securitytracker.com/id?1024430

http://secunia.com/advisories/41446

http://aix.software.ibm.com/aix/efixes/security/sa_snap_advisory.asc

Details

Source: Mitre, NVD

Published: 2010-09-16

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics