Rapid7 Vulnerability & Exploit Database

AIX 5.3.12 - cmdque_advisory : AIX_printer_commands_vulnerability

Back to Search

AIX 5.3.12 - cmdque_advisory : AIX_printer_commands_vulnerability

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
09/25/2013
Created
07/25/2018
Added
10/02/2014
Modified
10/05/2015

Description

Printer commands mkque and mkquedev are susceptible to buffer overflow by users belonging to the 'printq' group. These commands are owned by 'root' and SUID bit set. The group is set to 'printq'. By default, no users are belong to the 'printq'.

Solution(s)

  • aix-5.3.12-aix_printer_commands_vulnerability_cmdque_advisory

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;