Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2009-3516

gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.

  • Published: Oct 1, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-3516
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
ibm / aix 5.3.8 5.3.8.x
ibm / aix 5.3.7 5.3.7.x
ibm / aix 6.1.0 6.1.0.x
ibm / aix 6.1.1 6.1.1.x
ibm / aix 6.1 6.1.x
ibm / aix 6.1.2 6.1.2.x
ibm / aix 5.3.0 5.3.0.x