Description
Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1, 5.3, and earlier and VIOS 2.1, 1.5, and earlier allows local users to leverage system group membership and gain privileges via unspecified vectors.
References (14)
Core 14
Core References
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ82245
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ83942
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2377
Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12214
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/43207
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ84167
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ81819
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/61774
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ82630
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/41446
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ83909
Vendor Advisory vendor-advisory
x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=isg1IZ83975
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1024430
Patch, Vendor Advisory x_refsource_confirm
http://aix.software.ibm.com/aix/efixes/security/sa_snap_advisory.asc
Scores
EPSS
0.0043
EPSS Percentile
35.0%
Details
CWE
CWE-119
Status
published
Products (4)
ibm/aix
5.3
ibm/aix
6.1
ibm/vios
1.5
ibm/vios
2.1
Published
Sep 16, 2010
Tracked Since
Feb 18, 2026