Sign-up

ID

VAR-199905-0021


CVE

CVE-1999-0803


TITLE

AIX eNetwork Firewall fwluser Script to write arbitrary file vulnerabilities

Trust: 0.6

sources: CNNVD: CNNVD-199905-045

DESCRIPTION

The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack. A vulnerability exists in the fwluser script in the AIX eNetwork firewall

Trust: 0.99

sources: NVD: CVE-1999-0803 // VULHUB: VHN-784

AFFECTED PRODUCTS

vendor:ibmmodel:aix enetwork firewallscope:eqversion:3.3

Trust: 1.6

vendor:ibmmodel:aix enetwork firewallscope:eqversion:3.2

Trust: 1.6

sources: CNNVD: CNNVD-199905-045 // NVD: CVE-1999-0803

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-1999-0803
value: LOW

Trust: 1.0

CNNVD: CNNVD-199905-045
value: LOW

Trust: 0.6

VULHUB: VHN-784
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-1999-0803
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-784
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-784 // CNNVD: CNNVD-199905-045 // NVD: CVE-1999-0803

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-0803

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-199905-045

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-199905-045

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-784

EXTERNAL IDS
db:OSVDBid:962
Trust: 1.7
db:NVDid:CVE-1999-0803
Trust: 1.7
db:CNNVDid:CNNVD-199905-045
Trust: 0.7
db:BUGTRAQid:19990525 IBM ENETWORK FIREWALL FOR AIX
Trust: 0.6
db:EXPLOIT-DBid:19229
Trust: 0.1
db:VULHUBid:VHN-784
Trust: 0.1
sources:
            
            
            VULHUB: VHN-784 // 
            
            
            
            CNNVD: CNNVD-199905-045 // 
            
            
            
            NVD: CVE-1999-0803

REFERENCES
url:http://www.osvdb.org/962
Trust: 1.7
url:http://marc.info/?l=bugtraq&m=92765973207648&w=2
Trust: 1.1
url:http://marc.theaimsgroup.com/?l=bugtraq&m=92765973207648&w=2
Trust: 0.6
url: - 
Trust: 0.1
sources:
            
            
            VULHUB: VHN-784 // 
            
            
            
            CNNVD: CNNVD-199905-045 // 
            
            
            
            NVD: CVE-1999-0803

SOURCES
db:VULHUBid:VHN-784
db:CNNVDid:CNNVD-199905-045
db:NVDid:CVE-1999-0803

LAST UPDATE DATE
2024-08-14T15:10:05.080000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-784date:2016-10-18T00:00:00
db:CNNVDid:CNNVD-199905-045date:2005-05-02T00:00:00
db:NVDid:CVE-1999-0803date:2016-10-18T01:59:44.553

SOURCES RELEASE DATE
db:VULHUBid:VHN-784date:1999-05-25T00:00:00
db:CNNVDid:CNNVD-199905-045date:1999-05-25T00:00:00
db:NVDid:CVE-1999-0803date:1999-05-25T04:00:00