AIX 5.3 TL 12 : cmdque (IV51388)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote AIX host is missing a security patch.

Description :

Printer commands mkque and mkquedev are susceptible to buffer overflow
by users belonging to the 'printq' group. These commands are owned by
'root' and SUID bit set. The group is set to 'printq'. By default, no
users are belong to the 'printq'.

See also :

http://aix.software.ibm.com/aix/efixes/security/cmdque_advisory.asc

Solution :

Install the appropriate interim fix.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)

Family: AIX Local Security Checks

Nessus Plugin ID: 70721 ()

Bugtraq ID:

CVE ID: CVE-2013-5419

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now