OSVDB ID: 8007 Title: IBM AIX pioout Local Overflow |
Info |
|
|
Dates |
||||
|
|
Description |
A local overflow exists in IBM AIX. The pioout command fails to validate input resulting in a possible buffer overflow. With a specially crafted request, an attacker can cause arbitrary command execution resulting in a loss of integrity. |
Classification |
Location:
Local Access Required
Attack Type: Input Manipulation Impact: Loss of Integrity Exploit: Exploit Unknown Disclosure: OSVDB Verified |
Solution |
Upgrade to version 4.3.3 (APAR IY28880), 5.1.0 (APAR IY29677) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. |
Products |
|
References |
|
Credit |
Unknown or Incomplete |