Published: 09/01/2006 Updated: 19/10/2018

CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9

VMScore: 370

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N

Multiple directory traversal vulnerabilities in AIX 5.3 ML03 allow local users to determine the existence of files and read partial contents of certain files via a .. (dot dot) in the argument to (1) getCommand.new (aka getCommand) and (2) getShell, a different vulnerability than CVE-2005-4273.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm aix 5.3_ml03

source: wwwsecurityfocuscom/bid/16103/info IBM AIX is prone to a local vulnerability in getShell and getCommand This vulnerability may let the attacker gain unauthorized read access to shell scripts on the computer -bash-300$ ls -l /tmp/ksh -rwx------ 1 root system 79 2005-12-22 23:40 /tmp/ksh -bash-300$/getCommandnew /// ...

source: wwwsecurityfocuscom/bid/16102/info IBM AIX is prone to a local vulnerability in getShell and getCommand This issue may let local attackers enumerate the existence of files on the computer that they wouldn't ordinarily be able to see -bash-300$/getCommandnew //////etc/security/passwd -bash-300$/getCommandnew ...

NVD-CWE-Other http://securitytracker.com/id?1015429 http://www.securityfocus.com/bid/16102 http://www.securityfocus.com/bid/16103 http://www.securityfocus.com/archive/1/420589/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/26997/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0133

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect