AIX 7.1 TL 1 : bos.mp64 (U854884)

Medium Nessus Plugin ID 66278


The remote AIX host is missing a vendor-supplied security patch.


The remote host is missing AIX PTF U854884, which is related to the security of the package bos.mp64.

The root owned files can be read by non-root users only when the directory permissions are set allowed for non-root users. For example, a non-root user won't be able to read anything under /etc/security, but can read files like /etc/rc.wpars under ftp.


Install the appropriate missing security-related fix.

See Also

Plugin Details

Severity: Medium

ID: 66278

File Name: aix_U854884.nasl

Version: $Revision: 1.3 $

Type: local

Published: 2013/05/01

Modified: 2013/08/25

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:N/A:N

Vulnerability Information

CPE: cpe:/o:ibm:aix:7.1

Required KB Items: Host/local_checks_enabled, Host/AIX/oslevel, Host/AIX/version, Host/AIX/lslpp

Patch Publication Date: 2012/09/26

Vulnerability Publication Date: 2012/09/26

Reference Information

CVE: CVE-2012-4845