Privilege Escalation Vulnerability in RSCT ctstrtcasd Program
CVE-2004-0828 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:P/A:N
The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.
Learn more about our Cis Benchmark Audit For Ibm Aix.