CVE-2014-0899

EUVD-2014-0929
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and modify arbitrary files via FTP commands.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
ibmaix
7.1.1
ibmaix
7.1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://aix.software.ibm.com/aix/efixes/security/wparcre_advisory.asc
http://www.ibm.com/support/docview.wss?uid=isg1IV51420
http://www.ibm.com/support/docview.wss?uid=isg1IV51421
https://exchange.xforce.ibmcloud.com/vulnerabilities/91396
http://aix.software.ibm.com/aix/efixes/security/wparcre_advisory.asc
http://www.ibm.com/support/docview.wss?uid=isg1IV51420
http://www.ibm.com/support/docview.wss?uid=isg1IV51421
https://exchange.xforce.ibmcloud.com/vulnerabilities/91396