AIX 7.1 TL 0 : infiniband (IV43562)

High Nessus Plugin ID 68965


The remote AIX host is missing a security patch.


Both 'ibstat' and .arp.ib. commands have security vulnerabilities that can allow a non-privileged user to run malicious code with privileged authority.


Install the appropriate interim fix.

See Also

Plugin Details

Severity: High

ID: 68965

File Name: aix_IV43562.nasl

Version: 1.10

Type: local

Published: 2013/07/19

Modified: 2018/06/29

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:ibm:aix:7.1

Required KB Items: Host/AIX/lslpp, Host/local_checks_enabled, Host/AIX/version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/07/16

Vulnerability Publication Date: 2013/07/16

Exploitable With

Metasploit (ibstat $PATH Privilege Escalation)

Reference Information

CVE: CVE-2013-4011

BID: 60412, 61287