CVE-2009-3516

N/A Unknown
Published: October 01, 2009 Modified: April 23, 2026
View on NVD

Description

gssd in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly handle the NFSv4 Kerberos credential cache, which allows local users to bypass intended access restrictions for Kerberized NFSv4 shares via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://aix.software.ibm.com/aix/efixes/security/nfs4_advisory.asc
Source: cve@mitre.org
Patch Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49024
Source: cve@mitre.org
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49096
Source: cve@mitre.org
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49278
Source: cve@mitre.org
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50399
Source: cve@mitre.org
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50444
Source: cve@mitre.org
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50496
Source: cve@mitre.org
Vendor Advisory
http://www.securityfocus.com/bid/36545
Source: cve@mitre.org
Patch
http://www.vupen.com/english/advisories/2009/2788
Source: cve@mitre.org
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6318
Source: cve@mitre.org
http://aix.software.ibm.com/aix/efixes/security/nfs4_advisory.asc
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49024
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49096
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ49278
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50399
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50444
Source: af854a3a-2127-422b-91ae-364da2661108
http://www-01.ibm.com/support/docview.wss?uid=isg1IZ50496
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.securityfocus.com/bid/36545
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.vupen.com/english/advisories/2009/2788
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6318
Source: af854a3a-2127-422b-91ae-364da2661108

20 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.1%
24th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-255

Affected Vendors

ibm

Related CVEs

CVE-2026-7073 7.3
CVE-2026-7072 7.3
CVE-2026-7071 5.3
CVE-2026-7070 7.3
CVE-2026-7069 8.0