Info

Disclosure

Apr 22, 2004

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Parallel Environment contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The problem is that some sample code used to demonstrate features of the Network Table and Switch Table APIs contains a flaw, which could allow a malicious user to execute arbitrary code, resulting in a loss of integrity. No further details have been provided.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released a patch to address this vulnerability.

Products

International Business Machines Corporation	Parallel Environment	3.2
		4.1

References

Security Tracker: 1010109
Bugtraq ID: 10310
Secunia Advisory ID: 11580
ISS X-Force ID: 16093
CVE ID: 2004-2270 (see also: NVD)
Other Advisory URL: https://techsupport.services.ibm.com/server/pseries.subscriptionSvcs?mode=18&ID=312

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/6008

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

International Business Machines Corporation

Parallel Environment

References

Credit