CVEブラウザに戻る

CVE-1999-1405

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0380%

EPSS Percentile17.20th

Published1999年2月17日

Last Modified2026年4月16日

Vulnerability Description

snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.

Affected Platforms (CPE)

💻

Ibm

Aix

= 3.2.5

💻

Ibm

Aix

= 4.1

💻

Ibm

Aix

= 4.1.2

💻

Ibm

Aix

= 4.1.3

💻

Ibm

Aix

= 4.1.4

💻

Ibm

Aix

= 4.1.5

💻

Ibm

Aix

= 4.2

💻

Ibm

Aix

= 4.2.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=91936783009385&w=2

🔗 http://marc.info/?l=bugtraq&m=91954824614013&w=2

🔗 http://www.securityfocus.com/bid/375

🔗 http://marc.info/?l=bugtraq&m=91936783009385&w=2

🔗 http://marc.info/?l=bugtraq&m=91954824614013&w=2

🔗 http://www.securityfocus.com/bid/375

関連する脆弱性情報

CVE-1999-111910.0

FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary co...

CVE-1999-010110.0

Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-1999-010010.0

Remote access in AIX innd 1.5.1, using control messages.