Definition


New Search

IBM AIX lsmcode Environment Variable Bug Lets Local Users Gain Root Privileges

oval:org.mitre.oval:def:5566

The lsmcode program on IBM AIX 5.2 5.3 and 6.1 does not properly handle environment variables which allows local users to gain privileges a different vulnerability than CVE-2004-1329.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • IBM AIX 5.2
  • IBM AIX 5.3
  • IBM AIX 6.1
Class:
vulnerability
Reference(s):
  • CVE-2008-1600
Product(s):