Privilege Escalation via lspath in AIX 5.2, 5.3, and Earlier Versions

Privilege Escalation via lspath in AIX 5.2, 5.3, and Earlier Versions

CVE-2005-0261 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing the -f option, which allows local users to read one line of arbitrary files.

Learn more about our Cis Benchmark Audit For Ibm Aix.