AIX dtterm Unspecified Local Privilege Escalation

2006-08-30T09:33:57
ID OSVDB:28275
Type osvdb
Reporter OSVDB
Modified 2006-08-30T09:33:57

Description

Vulnerability Description

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges and execute arbitrary code with root privileges. The issue is triggered due to an unspecified error in 'dtterm'. This flaw may lead to a loss of Integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released a patch to address this vulnerability.

Short Description

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges and execute arbitrary code with root privileges. The issue is triggered due to an unspecified error in 'dtterm'. This flaw may lead to a loss of Integrity.

References:

Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:21673 FrSIRT Advisory: ADV-2006-3422 CVE-2006-4522 Bugtraq ID: 19786