Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2007-5804
PUBLISHED
More InfoOfficial Page
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
View Known Exploited Vulnerability (KEV) details
Published At-05 Nov, 2007 | 17:00
Updated At-07 Aug, 2024 | 15:47
Rejected At-
▼CVE Numbering Authority (CNA)

cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create or overwrite an arbitrary file, and enable world writability of this file, by using the file's name as the argument.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://exchange.xforce.ibmcloud.com/vulnerabilities/38154
vdb-entry
x_refsource_XF
http://secunia.com/advisories/27437
third-party-advisory
x_refsource_SECUNIA
http://www.securityfocus.com/bid/26258
vdb-entry
x_refsource_BID
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055
vendor-advisory
x_refsource_AIXAPAR
ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar
x_refsource_CONFIRM
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061
vendor-advisory
x_refsource_AIXAPAR
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611
third-party-advisory
x_refsource_IDEFENSE
http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405
x_refsource_CONFIRM
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/38154
Resource:
vdb-entry
x_refsource_XF
Hyperlink: http://secunia.com/advisories/27437
Resource:
third-party-advisory
x_refsource_SECUNIA
Hyperlink: http://www.securityfocus.com/bid/26258
Resource:
vdb-entry
x_refsource_BID
Hyperlink: http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar
Resource:
x_refsource_CONFIRM
Hyperlink: http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061
Resource:
vendor-advisory
x_refsource_AIXAPAR
Hyperlink: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611
Resource:
third-party-advisory
x_refsource_IDEFENSE
Hyperlink: http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405
Resource:
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://exchange.xforce.ibmcloud.com/vulnerabilities/38154
vdb-entry
x_refsource_XF
x_transferred
http://secunia.com/advisories/27437
third-party-advisory
x_refsource_SECUNIA
x_transferred
http://www.securityfocus.com/bid/26258
vdb-entry
x_refsource_BID
x_transferred
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055
vendor-advisory
x_refsource_AIXAPAR
x_transferred
ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar
x_refsource_CONFIRM
x_transferred
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061
vendor-advisory
x_refsource_AIXAPAR
x_transferred
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611
third-party-advisory
x_refsource_IDEFENSE
x_transferred
http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405
x_refsource_CONFIRM
x_transferred
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/38154
Resource:
vdb-entry
x_refsource_XF
x_transferred
Hyperlink: http://secunia.com/advisories/27437
Resource:
third-party-advisory
x_refsource_SECUNIA
x_transferred
Hyperlink: http://www.securityfocus.com/bid/26258
Resource:
vdb-entry
x_refsource_BID
x_transferred
Hyperlink: http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: ftp://aix.software.ibm.com/aix/efixes/security/cfgcon_ifix.tar
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061
Resource:
vendor-advisory
x_refsource_AIXAPAR
x_transferred
Hyperlink: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611
Resource:
third-party-advisory
x_refsource_IDEFENSE
x_transferred
Hyperlink: http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405
Resource:
x_refsource_CONFIRM
x_transferred
Details not found