AIX 6.1 TL 7 : infiniband (IV43827)

High Nessus Plugin ID 68969


The remote AIX host is missing a security patch.


Both 'ibstat' and .arp.ib. commands have security vulnerabilities that can allow a non-privileged user to run malicious code with privileged authority.


Install the appropriate interim fix.

See Also

Plugin Details

Severity: High

ID: 68969

File Name: aix_IV43827.nasl

Version: $Revision: 1.9 $

Type: local

Published: 2013/07/19

Modified: 2014/06/22

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:ibm:aix:6.1

Required KB Items: Host/AIX/lslpp, Host/local_checks_enabled, Host/AIX/version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/07/16

Vulnerability Publication Date: 2013/07/16

Exploitable With

Metasploit (ibstat $PATH Privilege Escalation)

Reference Information

CVE: CVE-2013-4011

BID: 60417, 61287