Privilege Escalation Vulnerability in RSCT ctstrtcasd Program

Privilege Escalation Vulnerability in RSCT ctstrtcasd Program

CVE-2004-0828 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.

Learn more about our Cis Benchmark Audit For Ibm Aix.