CVE-1999-1552 — HIGH (7.2) — White Hats Nepal

Q: What is CVE-1999-1552?

CVE-1999-1552 is a vulnerability with a CVSS score of 7.2 (HIGH). dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

Q: How severe is CVE-1999-1552?

CVE-1999-1552 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-1999-1552?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Aix.

Vulnerability Description

dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Ibm	Aix	<= 3.2.5

References

http://lists.insecure.org/lists/bugtraq/1994/Jul/0038.html
http://www.securityfocus.com/bid/358PatchVendor Advisory
http://lists.insecure.org/lists/bugtraq/1994/Jul/0038.html
http://www.securityfocus.com/bid/358PatchVendor Advisory

FAQ

What is CVE-1999-1552?

CVE-1999-1552 is a vulnerability with a CVSS score of 7.2 (HIGH). dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

How severe is CVE-1999-1552?

CVE-1999-1552 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-1552?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Aix.