AIX getlvcb Local Overflow

2004-03-22T03:40:05
ID OSVDB:4392
Type osvdb
Reporter OSVDB
Modified 2004-03-22T03:40:05

Description

Vulnerability Description

A local overflow exists in IBM AIX. The getlvcb command fails to validate input resulting in a possible buffer overflow. With a specially crafted request, an attacker can cause arbitrary command execution resulting in a loss of confidentiality and/or integrity.

Technical Description

An attacker must have 'system' group access to exploit these vulnerabilities.

Solution Description

Upgrade AIX using the APAR numbers AIX 5.1.0:  IY55681 and AIX 5.2.0:  IY55682 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A local overflow exists in IBM AIX. The getlvcb command fails to validate input resulting in a possible buffer overflow. With a specially crafted request, an attacker can cause arbitrary command execution resulting in a loss of confidentiality and/or integrity.

References:

Vendor Specific Solution URL: http://www-1.ibm.com/support/docview.wss?uid=isg1IY55681 Vendor Specific Solution URL: http://www-1.ibm.com/support/docview.wss?uid=isg1IY55682 Vendor Specific Advisory URL Secunia Advisory ID:11158 Related OSVDB ID: 4393 Related OSVDB ID: 7921 ISS X-Force ID: 15555 Generic Exploit URL: http://www.securityfocus.com/data/vulnerabilities/exploits/ex_getlvcb_aix433_limited.pl Generic Exploit URL: http://www.securityfocus.com/data/vulnerabilities/exploits/getlvcb.c Generic Exploit URL: http://packetstormsecurity.org/0405-exploits/getlvcb.c CVE-2004-0544 CIAC Advisory: o-131 Bugtraq ID: 9905