Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2007-4004

Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the client is setuid root on AIX, so this issue crosses privilege boundaries.

  • Published: Jul 27, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-4004
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
ibm / aix 5.2.0 5.2.0.x
ibm / aix 5.3-sp6 5.3-sp6.x