{"vuid":"VU#602300","idnumber":"602300","name":"AIX \"getconf\" contains buffer overflow vulnerability","keywords":["AIX","buffer overflow","getconf","5L","5.2.0","5.3.0","IY73850","IY73814"],"overview":"IBM AIX getconf contains a buffer overflow vulnerability that may lead to arbitrary code execution.","clean_desc":"IBM AIX contains the getconf command that provides information about system configuration. An unspecified buffer overflow condition has been identified in getconf and may lead to arbitrary code execution by local users.","impact":"Local, authenticated users may be able to execute arbitrary code.","resolution":"Apply an update\nIBM has issued updates to address this issue. Please see documents IY73850 and IY73814 for more information.","workarounds":"","sysaffected":"","thanks":"Thanks to IBM for reporting this vulnerability.","author":"This document was written by Ken MacInnis.","public":["http://www-1.ibm.com/support/docview.wss?uid=isg1IY73814","http://www-1.ibm.com/support/docview.wss?uid=isg1IY73850","http://secunia.com/advisories/16996/"],"cveids":["CVE-2005-3060"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2005-09-29T12:56:47Z","publicdate":"2005-09-29T00:00:00Z","datefirstpublished":"2005-09-29T14:49:50Z","dateupdated":"2005-09-29T14:49:59Z","revision":4,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"15","cam_impact":"18","cam_easeofexploitation":"10","cam_attackeraccessrequired":"10","cam_scorecurrent":"10.125","cam_scorecurrentwidelyknown":"12.65625","cam_scorecurrentwidelyknownexploited":"22.78125","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":10.125,"vulnote":null}