CVE-2019-4529
IBM Sterling Connect:Direct for UNIX is vulnerable to privilege escalation via a malicious getuid() replacement in the C/C++ API. Affected: UNIX versions 6.0.0, 4.3.0, and 4.2.0. An authenticated user with limited Connect:Direct privileges can exploit a custom application to gain unauthorized acc...