Unrated severityNVD Advisory· Published Jul 26, 2007· Updated Apr 23, 2026
CVE-2007-4004
CVE-2007-4004
Description
Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the client is setuid root on AIX, so this issue crosses privilege boundaries.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- secunia.com/advisories/26219nvdVendor Advisory
- aix.software.ibm.com/aix/efixes/security/READMEnvd
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- www-1.ibm.com/support/docview.wssnvd
- www-1.ibm.com/support/docview.wssnvd
- www.securityfocus.com/bid/25077nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2675nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35627nvd
News mentions
0No linked articles in our index yet.