Vulnerability Details : CVE-2013-4011
Public exploit exists!
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.
Exploit prediction scoring system (EPSS) score for CVE-2013-4011
Probability of exploitation activity in the next 30 days: 0.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 53 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2013-4011
-
ibstat $PATH Privilege Escalation
Disclosure Date: 2013-09-24First seen: 2020-04-26exploit/aix/local/ibstat_pathThis module exploits the trusted $PATH environment variable of the SUID binary "ibstat". Authors: - Kristian Erik Hermansen - Sagi Shahar <sagi.shahar@mwrinfosecurity.com> - Kostas Lintovois <kostas.lintovois@mwrinfosecurity.com>
CVSS scores for CVE-2013-4011
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-2013-4011
-
http://aix.software.ibm.com/aix/efixes/security/infiniband_advisory.asc
Vendor Advisory
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43562
IBM IV43562: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 7100-00Vendor Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19167
Repository / Oval Repository
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43561
IBM IV43561: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 7100-02Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/85617
IBM AIX InfiniBand privilege escalation CVE-2013-4011 Vulnerability Report
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43827
IBM IV43827: ARP.IB:SECURITY VULNERABILITY, NON-ROOT USER CAN GET ROOT ACCESS APPLIES TO AIX 6100-07Vendor Advisory
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43580
IBM IV43580: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 6100-08Vendor Advisory
-
http://www.securityfocus.com/bid/61287
IBM AIX CVE-2013-4011 Multiple Local Privilege Escalation Vulnerabilities
-
http://www.securitytracker.com/id/1028792
IBM AIX InfiniBand Lets Local Users Gain Elevated Privileges - SecurityTracker
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43582
IBM IV43582: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 6100-06Vendor Advisory
-
http://www.ibm.com/support/docview.wss?uid=isg1IV43756
IBM IV43756: ARP.IB:SECURITY VULNERABILITY, NON-ROOT USER CAN GET ROOT ACCESS APPLIES TO AIX 7100-01Vendor Advisory
Products affected by CVE-2013-4011
- cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:vios:2.2.2.2:fp-26_sp-02:*:*:*:*:*:*