Vulnerabilities > CVE-2005-2236 - Local Format String vulnerability in IBM AIX 5.3

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

ibm

exploit available

NVD

Published: 2005-07-12

Updated: 2008-09-05

Summary

Format string vulnerability in the paginit command in IBM AIX 5.3, and possibly other versions, might allow local users to execute arbitrary code via format strings in command line arguments.

Vulnerable Configurations

Part	Description	Count
OS	Ibm IBM AIX 5.3	1

Exploit-Db

description	AIX 5.2 paginit Local Root Exploit. CVE-2005-2232,CVE-2005-2236. Local exploit for aix platform
id	EDB-ID:1046
last seen	2016-01-31
modified	2005-06-14
published	2005-06-14
reporter	intropy
source	https://www.exploit-db.com/download/1046/
title	AIX 5.2 paginit Local Root Exploit

References

http://securitytracker.com/id?1014132
http://www.caughq.org/advisories/CAU-2005-0003.txt
http://www.securityfocus.com/bid/13911