APAR status
Closed as program error.
Error description
Potential security vulnerability . arp.ib command can allow a non-root user to get root access from where user can run malicious code..
Local fix
Problem summary
The "arp.ib" command allows a non-privileged user to run malicious code with privileged authority.
Problem conclusion
Fixed the vulnerability
Temporary fix
Comments
APAR Information
APAR number
IV44402
Reported component name
AIX 5.3 EXT SUP
Reported component ID
5765G0399
Reported release
53E
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Submitted date
2013-06-18
Closed date
2013-06-18
Last modified date
2013-06-18
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
AIX 5.3 EXT SUP
Fixed component ID
5765G0399
Applicable component levels
R53E PSY
UP
[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11P","label":"APARs - AIX 5.3 environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"53E","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
18 June 2013