Info

Disclosure

Jun 28, 2001

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A local buffer overflow exists in IBM AIX library libi18n. The library function _GETLAYOUTINITFUNC fails to validate the length of the LANG environment variable resulting in a buffer overflow. With a specially crafted request, an attacker can gain root privileges resulting in a loss of confidentiality and/or integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade AIX using the APAR numbers AIX 5.1: IY21309 and AIX 4.3: IY20867 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

International Business Machines Corporation	AIX	4.3
		5.1

References

Keyword: /usr/ccs/lib MSS-OAR-E01-2001:271.1
CVE ID: 2001-0533 (see also: NVD)
ISS X-Force ID: 6863
Vendor Specific Advisory URL: http://www-1.ibm.com/services/continuity/recover1.nsf/4699c03b46f2d4f68525678c006d45ae/85256a3400529a8685256a920055682d/$FILE/oar271.txt
Vendor Specific Solution URL: http://www-1.ibm.com/support/docview.wss?uid=isg1IY20867
http://www-1.ibm.com/support/docview.wss?uid=isg1IY21309
CIAC Advisory: l-123

Credit

Troy Bollinger - IBM MSSD

Direct URL: http://osvdb.org/5585

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

International Business Machines Corporation

AIX

References

Credit