Lucene search

K
cve[email protected]CVE-2001-1080
HistoryJun 19, 2001 - 4:00 a.m.

CVE-2001-1080

2001-06-1904:00:00
NVD-CWE-Other
web.nvd.nist.gov
19
cve-2001-1080
aix 4.3.x
aix 5.1
diagdatadir
local users
privileges
trojan horse program
nvd

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.042 Low

EPSS

Percentile

92.0%

diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.

CPENameOperatorVersion
ibm:aixibm aixeq4.3
ibm:aixibm aixeq5.1

7.6 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.042 Low

EPSS

Percentile

92.0%