New Search

Malloc subsystem in libc in IBM AIX 5.3 and 6.1 vulnerability.

oval:org.mitre.oval:def:6276

The malloc subsystem in libc in IBM AIX 5.3 and 6.1 allows local users to create or overwrite arbitrary files via a symlink attack on the log file associated with the MALLOCDEBUG environment variable.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • IBM AIX 5.3
  • IBM AIX 6.1
Class:
vulnerability
Reference(s):
  • CVE-2009-1786
Product(s):