VYPR
Unrated severityNVD Advisory· Published Oct 1, 2009· Updated Jun 16, 2026

CVE-2009-3516

CVE-2009-3516

Description

gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.

Affected products

8
  • IBM/Aix8 versions
    cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:5.3.7:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:5.3.8:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1.0:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1.1:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1.2:*:*:*:*:*:*:*
    • (no CPE)range: 5.3.x through 5.3.9, 6.1.0 through 6.1.2

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.