IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
BID:53393
Info
IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
| Bugtraq ID: | 53393 |
| Class: | Unknown |
| CVE: |
CVE-2012-0745 |
| Remote: | No |
| Local: | Yes |
| Published: | May 04 2012 12:00AM |
| Updated: | Mar 19 2015 08:11AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 |
| Not Vulnerable: | |
Discussion
IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
IBM AIX is prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to gain elevated privileges on affected computers.
IBM AIX versions 5.3, 6.1, and 7.1 are vulnerable.
IBM AIX is prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to gain elevated privileges on affected computers.
IBM AIX versions 5.3, 6.1, and 7.1 are vulnerable.
Exploit / POC
IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
IBM AIX 'getpwnam()' Local Privilege Escalation Vulnerability
References:
References:
- AIX Homepage (IBM)
- IBM SECURITY ADVISORY (IBM)