AIX 6.1 TL 3 : qosmod (IZ71555)
High Nessus Plugin ID 64356
SynopsisThe remote AIX host is missing a security patch.
DescriptionThere is a buffer overflow vulnerability in the qosmod command. A locally authenticated attacker can exploit this vulnerability if they have they have been assigned the aix.network.config.no role-based access control authorization.
The successful exploitation of this vulnerability allows a local attacker to execute arbitrary code with the innate privileges of the qosmod command.
The following executable is vulnerable :
SolutionInstall the appropriate interim fix.