CVE-2015-4948

MEDIUM

Description

netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

References

http://aix.software.ibm.com/aix/efixes/security/netstat_advisory.asc

http://www.securitytracker.com/id/1033806

http://www-01.ibm.com/support/docview.wss?uid=swg1IV75940

http://www-01.ibm.com/support/docview.wss?uid=swg1IV77299

Details

Source: MITRE

Published: 2015-10-16

Updated: 2016-12-08

Type: CWE-264

Risk Information

CVSS v2.0

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM