AT&T TCP/IP 4.0 on SVR4 /usr/etc/rexecd privileges management

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in AT&T TCP and IP 4.0 on SVR4. It has been declared as very critical. This vulnerability affects some unknown processing of the file /usr/etc/rexecd. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
107072804/03/2019VulD...cwe269 (privilege escalation)04/03/2019accepted90
107072704/03/2019VulD...securityfocus_titleAT&T TCP/IP /usr/etc/rexecd Vulnerabilitysecurityfocus.com04/03/2019accepted100
107072604/03/2019VulD...securityfocus_classUnknownsecurityfocus.com04/03/2019accepted100
107072504/03/2019VulD...securityfocus_date698976000 (02/25/1992)securityfocus.com04/03/2019accepted100
107072404/03/2019VulD...securityfocus36securityfocus.com04/03/2019accepted100
107072304/03/2019VulD...cve_nvd_summaryvulnerability in rexec daemon (rexecd) in at&t tcp/ip 4.0 for various svr4 systems allows remote attackers to execute arbitrary commands.mitre.org04/03/2019accepted100
107072204/03/2019VulD...cve_nvd_published698976000mitre.org04/03/2019accepted100
107071304/03/2019VulD...cvss2_nvd_aiCnist.gov04/03/2019accepted100
107071204/03/2019VulD...cvss2_nvd_iiCnist.gov04/03/2019accepted100
107071104/03/2019VulD...cvss2_nvd_ciCnist.gov04/03/2019accepted100
107071004/03/2019VulD...cvss2_nvd_auNnist.gov04/03/2019accepted100
107070904/03/2019VulD...cvss2_nvd_acLnist.gov04/03/2019accepted100
107070804/03/2019VulD...cvss2_nvd_avNnist.gov04/03/2019accepted100
107074306/16/2014VulD...cvss3_vuldb_aH06/16/2014accepted60
107074206/16/2014VulD...cvss3_vuldb_iH06/16/2014accepted60
107074106/16/2014VulD...cvss3_vuldb_cH06/16/2014accepted60
107074006/16/2014VulD...cvss3_vuldb_sU06/16/2014accepted60
107073906/16/2014VulD...cvss3_vuldb_prN06/16/2014accepted60
107073806/16/2014VulD...cvss3_vuldb_acL06/16/2014accepted60
107073706/16/2014VulD...cvss3_vuldb_avN06/16/2014accepted60

Interested in the pricing of exploits?

See the underground prices here!