AIX 5.3 TL 12 : pconsole (IV89386)

Medium Nessus Plugin ID 93821


The remote AIX host is missing a security patch.


A directory traversal vulnerability in the Eclipse Help component shipped by Tivoli Lightweight Infrastructure (LWI) allows remote attackers to read arbitrary files via a crafted URL. This vulnerability affects IBM System Director Console for AIX (pconsole) and Web Based System Management Remote Client (WebSM Remote).


Install the appropriate interim fix.

See Also

Plugin Details

Severity: Medium

ID: 93821

File Name: aix_IV89386.nasl

Version: $Revision: 2.2 $

Type: local

Published: 2016/10/03

Modified: 2016/10/07

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N


Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

CPE: cpe:/o:ibm:aix:5.3

Required KB Items: Host/AIX/lslpp, Host/local_checks_enabled, Host/AIX/version

Patch Publication Date: 2016/09/22

Vulnerability Publication Date: 2016/09/22

Reference Information

CVE: CVE-2016-6038