Privilege Escalation via getpwnam Function in IBM AIX and VIOS

Privilege Escalation via getpwnam Function in IBM AIX and VIOS

CVE-2012-0745 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The getpwnam function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.1.0.10 through 2.2.1.3 does not properly interact with customer-extended LDAP user filtering, which allows local users to gain privileges via unspecified vectors.

Learn more about our Cis Benchmark Audit For Apple Ios.