Vulnerability Description
Unspecified vulnerability in the Cluster Management component in IBM PowerHA 5.4, 5.4.1, 5.5, and 6.1 on AIX allows remote attackers to modify the operating-system configuration via packets to the godm port (6177/tcp).
CVSS Score
7.8
HIGH
AV:N/AC:L/Au:N/C:N/I:C/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Powerha | 5.4 |
| Ibm | Aix | All versions |
References
- http://aix.software.ibm.com/aix/efixes/security/haport_advisory.ascExploit
- http://secunia.com/advisories/37267Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ61323
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ61325Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ62630
- http://www.securityfocus.com/bid/36931Patch
- http://www.vupen.com/english/advisories/2009/3153PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54154
- http://aix.software.ibm.com/aix/efixes/security/haport_advisory.ascExploit
- http://secunia.com/advisories/37267Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ61323
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ61325Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=isg1IZ62630
- http://www.securityfocus.com/bid/36931Patch
- http://www.vupen.com/english/advisories/2009/3153PatchVendor Advisory
FAQ
What is CVE-2009-3900?
CVE-2009-3900 is a vulnerability with a CVSS score of 7.8 (HIGH). Unspecified vulnerability in the Cluster Management component in IBM PowerHA 5.4, 5.4.1, 5.5, and 6.1 on AIX allows remote attackers to modify the operating-system configuration via packets to the god...
How severe is CVE-2009-3900?
CVE-2009-3900 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3900?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Powerha, Ibm Aix.