Info

Disclosure

Feb 23, 2001

Discovery

Unknown

Dates

Exploit

Feb 23, 2001

Solution

Unknown

Description

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the command lsfs is installed with the SUID bit and calls commands modified by an attacker. This flaw may lead to a loss of confidentiality and/or integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation, Other
Impact: Loss of Confidentiality, Loss of Integrity, Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Apply APAR IY16909 patch or upgrade to AIX 5.1 as both have been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Use the chmod -s command to remove the setuid bit from lsfs.

Products

International Business Machines Corporation	AIX	4.3.0
		4.3.1
		4.3.2
		4.3.3

References

CERT VU: 123651
CVE ID: 2001-0573 (see also: NVD)
Bugtraq ID: 6741
ISS X-Force ID: 7007
Vendor Specific Advisory URL: http://www-1.ibm.com/support/docview.wss?uid=isg1IY16909
Keyword: SUID PATH

Credit

IBM - IBM

Direct URL: http://osvdb.org/5582

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

International Business Machines Corporation

AIX

References

Credit