Vulnerabilities > CVE-2005-0261 - Unspecified vulnerability in IBM AIX 5.2/5.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing the -f option, which allows local users to read one line of arbitrary files.
References
- http://secunia.com/advisories/14232
- http://secunia.com/advisories/14232
- http://www.idefense.com/application/poi/display?id=195&type=vulnerabilities
- http://www.idefense.com/application/poi/display?id=195&type=vulnerabilities
- http://www.securityfocus.com/bid/12513
- http://www.securityfocus.com/bid/12513
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY67457&apar=only
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY67457&apar=only
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY67655&apar=only
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY67655&apar=only
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19281
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19281