AIX piobe Buffer Overflow Vulnerability
BID:2037
Info
AIX piobe Buffer Overflow Vulnerability
| Bugtraq ID: | 2037 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 01 2000 12:00AM |
| Updated: | Dec 01 2000 12:00AM |
| Credit: | This vulnerability was first discovered by Esa Etelavuori < [email protected] > on December 1, 2000. |
| Vulnerable: |
IBM AIX 4.3.3 IBM AIX 4.3.2 IBM AIX 4.3.1 IBM AIX 4.3 |
| Not Vulnerable: | |
Discussion
AIX piobe Buffer Overflow Vulnerability
AIX is a variant of the UNIX Operating System, distributed by IBM. A problem exists which can allow a local user elevated priviledges.
The problem exists in the piobe program. Due to the insuffient handling of the PIOSTATUSFILE, PIOTITLE, and PIOVARDIR environment variables, it's possible to overwrite stack variables. This makes it possible for a malicious user to pass specially formatted strings to the program via environment variables, and potentially gain administrative access.
AIX is a variant of the UNIX Operating System, distributed by IBM. A problem exists which can allow a local user elevated priviledges.
The problem exists in the piobe program. Due to the insuffient handling of the PIOSTATUSFILE, PIOTITLE, and PIOVARDIR environment variables, it's possible to overwrite stack variables. This makes it possible for a malicious user to pass specially formatted strings to the program via environment variables, and potentially gain administrative access.
Exploit / POC
AIX piobe Buffer Overflow Vulnerability
Last Stage of Delerium has published exploit code:
Last Stage of Delerium has published exploit code:
Solution / Fix
AIX piobe Buffer Overflow Vulnerability
Solution:
Upgrades available:
IBM AIX 4.3
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
Solution:
Upgrades available:
IBM AIX 4.3
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
References
AIX piobe Buffer Overflow Vulnerability
References:
References: