Privilege Escalation in IBM AIX and VIOS FTP Client

Privilege Escalation in IBM AIX and VIOS FTP Client

CVE-2012-4845 · MEDIUM Severity

AV:N/AC:L/AU:S/C:C/I:N/A:N

The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows attackers to bypass intended file-read restrictions by leveraging the setuid installation of the ftp executable file.

Learn more about our Cis Benchmark Audit For Apple Ios.