CVE-2009-3699
CVE-2009-3699
Stack-based buffer overflow in libcsa.a (aka the calendar daemon library) in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/16929não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://aix.software.ibm.com/aix/efixes/security/cmsd_advisory.aschttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=825http://secunia.com/advisories/36978http://securitytracker.com/id?1022996https://exchange.xforce.ibmcloud.com/vulnerabilities/53681https://www.immunityinc.com/downloads/immpartners/aixcmsd10092009.tar.gzhttp://www.ibm.com/support/docview.wss?uid=isg1IZ61628http://www.ibm.com/support/docview.wss?uid=isg1IZ61717http://www.ibm.com/support/docview.wss?uid=isg1IZ62123http://www.ibm.com/support/docview.wss?uid=isg1IZ62237http://www.ibm.com/support/docview.wss?uid=isg1IZ62569http://www.ibm.com/support/docview.wss?uid=isg1IZ62570