CVE-2008-1600

The lsmcode program on IBM AIX 5.2, 5.3, and 6.1 does not properly handle environment variables, which allows local users to gain privileges, a different vulnerability than CVE-2004-1329.

Date published : 2008-03-31

http://www.ibm.com/support/docview.wss?uid=isg1IZ15057

http://www.ibm.com/support/docview.wss?uid=isg1IZ15100