Published: 15/02/2017 Updated: 31/08/2021

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm aix 6.1
ibm aix 7.1
ibm aix 7.2
ibm aix 5.3
ibm vios 2.2.1.0
ibm vios 2.2.1.1
ibm vios 2.2.2.1
ibm vios 2.2.2.2
ibm vios 2.2.3.2
ibm vios 2.2.3.3
ibm vios 2.2.3.80
ibm vios 2.2.4.0
ibm vios 2.2.0.10
ibm vios 2.2.0.11
ibm vios 2.2.1.5
ibm vios 2.2.1.6
ibm vios 2.2.1.7
ibm vios 2.2.2.6
ibm vios 2.2.2.70
ibm vios 2.2.3.51
ibm vios 2.2.3.52
ibm vios 2.2.4.22
ibm vios 2.2.4.23
ibm vios 2.2.4.30
ibm vios 2.2.1.3
ibm vios 2.2.1.4
ibm vios 2.2.2.3
ibm vios 2.2.2.4
ibm vios 2.2.3.4
ibm vios 2.2.3.50
ibm vios 2.2.4.10
ibm vios 2.2.4.21
ibm vios 2.2.0.0
ibm vios 2.2.0.12
ibm vios 2.2.0.13
ibm vios 2.2.1.8
ibm vios 2.2.2.0
ibm vios 2.2.3.0
ibm vios 2.2.3.1
ibm vios 2.2.3.60
ibm vios 2.2.3.70
ibm vios 2.2.5.0
ibm vios 2.2.5.10

#!/usr/bin/sh # # AIX lquerylv 53, 61, 71, 72 local root exploit Tested against latest patchset (7100-04) # # This exploit takes advantage of known issues with debugging functions # within the AIX linker library We are taking advantage of known # functionality, and focusing on badly coded SUID binaries which do not # adhere to proper securit ...

CWE-264 http://aix.software.ibm.com/aix/efixes/security/lquerylv_advisory.asc http://www.securityfocus.com/bid/94090 http://www.securitytracker.com/id/1037256 https://www.exploit-db.com/exploits/40710/https://nvd.nist.gov https://www.exploit-db.com/exploits/40710/

CVE-2016-6079

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect