This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote AIX host is missing a security patch.
Buffer overflow vulnerabilities exist in the 'printers.rte' fileset
commands listed below. A local attacker may execute arbitrary code
with root privileges because the commands are setuid root.
The following commands are vulnerable :
/usr/lib/lpd/pio/etc/pioout The fix for piomkpq for IZ01121 and
IZ01122 was not included with this fix package, therefore it has been
repackged and included as described below. A local attacker who is a
member of the printq group may execute arbitrary code with root
privileges because the piomkpq command is setuid root. The following
command is vulnerable: /usr/lib/lpd/pio/etc/piomkpq.
See also :
Install the appropriate interim fix.
Risk factor :
High / CVSS Base Score : 7.2
Public Exploit Available : true