Privilege Escalation through Trojan Horse Programs in lsfs on AIX 4.x

Privilege Escalation through Trojan Horse Programs in lsfs on AIX 4.x

CVE-2001-0573 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory.

Learn more about our Cis Benchmark Audit For Ibm Aix.