CVE-2010-3405 Information

Description

Buffer overflow in sa_snap in the bos.esagent fileset in IBM AIX 6.1 5.3 and earlier and VIOS 2.1 1.5 and earlier allows local users to leverage system group membership and gain privileges via unspecified vectors.

Reference

http://aix.software.ibm.com/aix/efixes/security/sa_snap_advisory.asc http://secunia.com/advisories/41446 http://securitytracker.com/id?1024430 http://www.ibm.com/support/docview.wss?uid=isg1IZ81819 http://www.ibm.com/support/docview.wss?uid=isg1IZ82245 http://www.ibm.com/support/docview.wss?uid=isg1IZ82630 http://www.ibm.com/support/docview.wss?uid=isg1IZ83909 http://www.ibm.com/support/docview.wss?uid=isg1IZ83942 http://www.ibm.com/support/docview.wss?uid=isg1IZ83975 http://www.ibm.com/support/docview.wss?uid=isg1IZ84167 http://www.securityfocus.com/bid/43207 http://www.vupen.com/english/advisories/2010/2377 https://exchange.xforce.ibmcloud.com/vulnerabilities/61774 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A12214