Rapid7 Vulnerability & Exploit Database

AIX 5.2.0 - lvm_advisory : AIX_Logical_Volume_Manager_buffer_overflow (IZ10828)

Back to Search

AIX 5.2.0 - lvm_advisory : AIX_Logical_Volume_Manager_buffer_overflow (IZ10828)

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
01/22/2008
Created
07/25/2018
Added
10/02/2014
Modified
10/05/2015

Description

The AIX Logical Volume Manager provides a suite of utilities for AIX logical volume management features and functions. The primary fileset for the AIX Logical Volume Manager is 'bos.rte.lvm'. In addition, AIX provides another suite of utilities for concurrent logical volume management across multiple hosts. The primary fileset for the AIX Concurrent Logical Volume Manager is 'bos.clvm.enh'. Several imporant commands provided by these filesets for performing various logical volume management tasks have been identified as containing buffer overflow vulnerabilities.

Solution(s)

  • aix-5.2.0-aix_logical_volume_manager_buffer_overflow_lvm_advisory

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;