AIX 5.2 : IY48657

critical Nessus Plugin ID 14606

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing AIX Critical Security Patch number IY48657 (Sendmail prescan() vulnerability).

You should install this patch for your system to be up-to-date.

Solution

http://www-912.ibm.com/eserver/support/fixes/

Plugin Details

Severity: Critical

ID: 14606

File Name: aix_IY48657.nasl

Version: 1.13

Published: 9/1/2004

Updated: 1/4/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Host/AIX/lslpp

Exploit Available: true

Exploit Ease: Exploits are available

Exploitable With

Metasploit (Sendmail SMTP Address prescan Memory Corruption)

Reference Information

CVE: CVE-2003-0694