CVE-2014-3977

Public Exploit

Description

libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-2179.

References

Link	Tags
http://www.ibm.com/support/docview.wss?uid=isg1IV60312	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV60314	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV60299	vendor advisory
http://packetstormsecurity.com/files/127067/IBM-AIX-6.1.8-Privilege-Escalation.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/93595	vdb entry
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-3977/
http://www.securitytracker.com/id/1030401	vdb entry
http://www.ibm.com/support/docview.wss?uid=isg1IV60313	vendor advisory
http://www.exploit-db.com/exploits/33725	exploit
http://www.ibm.com/support/docview.wss?uid=isg1IV60303	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IV60311	vendor advisory
http://aix.software.ibm.com/aix/efixes/security/libodm_advisory.asc

Frequently Asked Questions

What is the severity of CVE-2014-3977?: CVE-2014-3977 has been scored as a medium severity vulnerability.
How to fix CVE-2014-3977?: To fix CVE-2014-3977, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2014-3977 being actively exploited in the wild?: It is possible that CVE-2014-3977 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-59 – Improper Link Resolution Before File Access ('Link Following')

References

Frequently Asked Questions