EUVD-2008-1600

Malware in sbrugna...

AIX 5.2 TL 0 : nddstat (IZ16991)

The nddstat family of commands contains an environment variable handling error. A local attacker may exploit this error to execute arbitrary code with root privileges because the commands are setuid root. The following files are vulnerable : /usr/sbin/atmstat /usr/sbin/entstat /usr/sbin/fddistat...

CVE-2008-1599

The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking 1 atmstat, 2 entstat, 3 fddistat, 4 hdlcstat, or 5 tokstat...

Code injection

The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking 1 atmstat, 2 entstat, 3 fddistat, 4 hdlcstat, or 5 tokstat...

CVE-2008-1599

CVE-2008-1599 affects IBM AIX 5.2, 5.3, and 6.1. The nddstat family (atmstat, entstat, fddistat, hdlcstat, tokstat) handles environment variables insecurely, allowing a local user to gain root privileges via these setuid-root commands. Vulnerable files/paths include /usr/sbin/atmstat, /usr/sbin/e...