IBM AIX setsenv buffer overflow

ID VU:886953
Type cert
Reporter CERT
Modified 2001-09-28T00:00:00



There is a buffer overflow in the IBM AIX setsenv command that may allow local attackers to gain root privileges.


The setsenv command is used to set protected state environment variables. There is a buffer overflow in a variable value parameter to the setsenv command on IBM AIX systems. An exploit for this vulnerability is publicly available, and is reported to have been used to compromise systems.


An attacker with access to a local user account can execute arbitrary code on the vulnerable system as root.


Apply a Patch

IBM has released patches to correct this problem. For AIX version 4.2, system adminstrators should apply APAR#IY10721. For AIX version 4.3, system administrators should apply APAR#IY08812.

Systems Affected

Vendor| Status| Date Notified| Date Updated
IBM| | -| 27 Sep 2001
If you are a vendor and your product is affected, let us know.

CVSS Metrics

Group | Score | Vector
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A



This document was written by Cory F. Cohen.

Other Information

  • CVE IDs: CVE-2000-1119
  • Date Public: 01 Dec 2000
  • Date First Published: 28 Sep 2001
  • Date Last Updated: 28 Sep 2001
  • Severity Metric: 15.19
  • Document Revision: 4