CVE-2007-5805

medium

Description

cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create an arbitrary file, and enable world writability of this file, via a symlink attack involving use of the file's name as the argument. NOTE: this issue is due to an incomplete fix for CVE-2007-5804.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/38154

http://www14.software.ibm.com/webapp/set2/subscriptions/ijhifoeblist?mode=7&heading=AIX53&path=%2F200710%2FSECURITY%2F20071030%2Fdatafile100405

http://www.securityfocus.com/bid/26258

http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03061

http://www-1.ibm.com/support/docview.wss?uid=isg1IZ03055

http://secunia.com/advisories/27437

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=611

Details

Source: Mitre, NVD

Published: 2007-11-05

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Severity: Medium

EPSS

EPSS: 0.00027