IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
BID:12517
Info
IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
| Bugtraq ID: | 12517 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 10 2005 12:00AM |
| Updated: | Feb 10 2005 12:00AM |
| Credit: | Discovery is credited to iDEFENSE Labs. |
| Vulnerable: |
IBM AIX 5.3 IBM AIX 5.2 IBM AIX 5.1 |
| Not Vulnerable: | |
Discussion
IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
netpmon is prone to a local buffer overflow vulnerability.
Reportedly, a user requires gid system privileges to execute the utility. A successful attack can grant the user superuser privileges.
IBM AIX 5.1, 5.2, and 5.3 are considered vulnerable at the moment.
netpmon is prone to a local buffer overflow vulnerability.
Reportedly, a user requires gid system privileges to execute the utility. A successful attack can grant the user superuser privileges.
IBM AIX 5.1, 5.2, and 5.3 are considered vulnerable at the moment.
Exploit / POC
IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
Solution:
IBM has released Efixes to address this issue.
IBM has released advisory ESB-2005.0139 including APARs to address this issue. The Efixes are being replaced with APARs. Please see the referenced advisory for more information.
IBM AIX 5.1
IBM AIX 5.2
IBM AIX 5.3
Solution:
IBM has released Efixes to address this issue.
IBM has released advisory ESB-2005.0139 including APARs to address this issue. The Efixes are being replaced with APARs. Please see the referenced advisory for more information.
IBM AIX 5.1
-
IBM netpmon_efix.tar.Z
ftp://aix.software.ibm.com/aix/efixes/security/netpmon_efix.tar.Z -
IBM IY67807
http://www-1.ibm.com/servers/eserver/support/pseries/aixfixes.html
IBM AIX 5.2
-
IBM netpmon_efix.tar.Z
ftp://aix.software.ibm.com/aix/efixes/security/netpmon_efix.tar.Z -
IBM IY67136
http://www-1.ibm.com/servers/eserver/support/pseries/aixfixes.html
IBM AIX 5.3
-
IBM netpmon_efix.tar.Z
ftp://aix.software.ibm.com/aix/efixes/security/netpmon_efix.tar.Z -
IBM IY67124
http://www-1.ibm.com/servers/eserver/support/pseries/aixfixes.html
References
IBM AIX Netpmon Command Line Argument Local Buffer Overflow Vulnerability
References:
References:
- AIX Homepage (IBM)
- IY67124: NETPMON: IMPROPER COMMAND LINE PARSING. (IBM)
- IY67136: NETPMON: IMPROPER COMMAND LINE PARSING. (IBM)
- IY67807: NETPMON: IMPROPER COMMAND LINE PARSING. (IBM)
- iDEFENSE Security Advisory 02.10.05 AIX netpmon Buffer Overflow Vulnerability ("iDefense Customer Service"