AIX pioout Buffer Overflow Vulnerability
BID:2036
Info
AIX pioout Buffer Overflow Vulnerability
| Bugtraq ID: | 2036 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 01 2000 12:00AM |
| Updated: | Dec 01 2000 12:00AM |
| Credit: | This vulnerability was first announced by Esa Etelavuori <[email protected]> on December 1, 2000. |
| Vulnerable: |
IBM AIX 4.3.3 IBM AIX 4.3.2 IBM AIX 4.3.1 IBM AIX 4.3 IBM AIX 5.1 |
| Not Vulnerable: | |
Discussion
AIX pioout Buffer Overflow Vulnerability
AIX is a variant of the UNIX Operating System, distributed by IBM. A problem exists which could allow elevation of priviledges for local users.
The problem exists in the pioout program. Parsing of the environment variable PIODEVNAME when stored in heap memory causes the program to die, due to insufficient handling by a strcpy() function. This makes it possible for a malicious user to generate a custom crafted environment variable that could allow for the overwriting of stack variables, and potentially execute arbitrary code.
AIX is a variant of the UNIX Operating System, distributed by IBM. A problem exists which could allow elevation of priviledges for local users.
The problem exists in the pioout program. Parsing of the environment variable PIODEVNAME when stored in heap memory causes the program to die, due to insufficient handling by a strcpy() function. This makes it possible for a malicious user to generate a custom crafted environment variable that could allow for the overwriting of stack variables, and potentially execute arbitrary code.
Solution / Fix
AIX pioout Buffer Overflow Vulnerability
Solution:
Upgrades available:
IBM AIX 5.1
IBM AIX 4.3
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
Solution:
Upgrades available:
IBM AIX 5.1
-
IBM IY29677
http://www.ibm.com/support
IBM AIX 4.3
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
References
AIX pioout Buffer Overflow Vulnerability
References:
References: