Vulnerabilities

CVE-2004-1329

by Fred · 06/01/2005

Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1 through 5.3 allows local users to execute arbitrary programs by modifying the DIAGNOSTICS environment variable to point to a malicious Dctrl program.

Date published : 2005-01-06

http://www-1.ibm.com/support/search.wss?rs=0&q=IY64277&apar=only

http://www-1.ibm.com/support/search.wss?rs=0&q=IY64389&apar=only

Similar

Tags: Cybersecurity Alert