CVE-2012-4833 Information

Description

fuser in IBM AIX 6.1 and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 does not properly restrict the -k option which allows local users to kill arbitrary processes via a crafted command line.

Reference

http://aix.software.ibm.com/aix/efixes/security/fuser_advisory.asc http://secunia.com/advisories/50708 http://www.ibm.com/support/docview.wss?uid=isg1IV28151 http://www.ibm.com/support/docview.wss?uid=isg1IV28749 http://www.ibm.com/support/docview.wss?uid=isg1IV28754 http://www.ibm.com/support/docview.wss?uid=isg1IV28756 http://www.securityfocus.com/bid/55726 http://www.securitytracker.com/id?1027586 https://exchange.xforce.ibmcloud.com/vulnerabilities/78907