CVE-2006-2647
The CVE-2006-2647 entry concerns an untrusted search path vulnerability in IBM AIX 5.1, 5.2 and 5.3, specifically tied to the update_flash component. The underlying issue enables a local attacker to run arbitrary commands via vectors involving the lsmcode utility (and potentially other commands)....