Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM AIX Inventory Scout数据操作和文件删除漏洞
Vulnerability Description
AIX是一个基于开放标准的UNIX操作系统,为用户提供企业信息技术基础架构。 IBM AIX在实现上存在两个漏洞,本地恶意用户可利用该漏洞操作某些数据并以提升的权限执行某些操作。 1)inventory scout中的错误可被利用通过符号链接攻击操作某些文件; 2)inventory scout中的不明细节错误可被利用删除某些系统文件。
CVSS Information
N/A
Vulnerability Type
N/A