PT-2004-2039 · Ibm · Aix
Published
2004-12-22
·
Updated
2017-07-11
·
CVE-2004-1054
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
IBM AIX versions 5.1.0 through 5.3.0
Description:
The issue allows local users to gain privileges by modifying the PATH environment variable to point to a malicious "uname" program. This malicious program is executed from
lsvpd after lsvpd has been invoked by invscout.Recommendations:
For IBM AIX versions 5.1.0 through 5.3.0, consider restricting modifications to the PATH environment variable to prevent pointing to malicious programs until a fix is available. As a temporary workaround, consider disabling the execution of
uname programs from untrusted paths.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Aix