CVE-2001-1080

Name of the Vulnerable Software and Affected Versions AIX versions 4.3.x through 5.1

Description The issue allows local users to gain privileges by modifying the DIAGDATADIR environment variable to point to a Trojan horse program, which is then executed by diagrpt.

Recommendations For AIX versions 4.3.x through 5.1, restrict access to the DIAGDATADIR environment variable to prevent unauthorized modifications. As a temporary workaround, consider setting the DIAGDATADIR variable to a trusted directory to minimize the risk of exploitation.