CVE-2005-0240

Name of the Vulnerable Software and Affected Versions IBM AIX version 5.2

Description A format string issue in the chdev command allows local users to execute arbitrary code via format string specifiers in a command line argument. This occurs because the argument is not properly handled when printing an error message.

Recommendations For IBM AIX version 5.2, consider restricting access to the chdev command until a patch is available. As a temporary workaround, avoid using format string specifiers in command line arguments for the chdev command to minimize the risk of exploitation.