CVE-2015-5005

Currently unrated

Key Information:

Vendor
IBM
Status
Powerha System Mirror
Vendor
CVE Published:
8 November 2015

Summary

CSPOC in IBM PowerHA SystemMirror on AIX 6.1 and 7.1 allows remote authenticated users to perform an "su root" action by leveraging presence on the cluster-wide password-change list.

References

http://aix.software.ibm.com/aix/efixes/security/powerha_a...
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=isg1IV76946
vendor-advisoryx_refsource_AIXAPAR
http://www.securityfocus.com/bid/76948
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.