Vulnerabilities > CVE-2006-4254 - Local Privilege Escalation vulnerability in IBM AIX 5.1/5.2/5.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
ibm
exploit available
NVD
Published: 2006-08-21
Updated: 2017-07-20

Summary

Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors. IBM has released an advisory and interim fixes to address this issue.

Vulnerable Configurations

Part Description Count
OS
Ibm
3

Exploit-Db

descriptionIBM AIX. CVE-2006-4254 . Local exploit for aix platform
idEDB-ID:4612
last seen2016-01-31
modified2007-11-07
published2007-11-07
reporterThomas Pollet
sourcehttps://www.exploit-db.com/download/4612/
titleIBM AIX <= 5.3.0 - setlocale Local Privilege Escalation Exploit

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/60746/setlocate-local.txt
idPACKETSTORM:60746
last seen2016-12-05
published2007-11-07
reporterThomas Pollet
sourcehttps://packetstormsecurity.com/files/60746/setlocate-local.txt.html
titlesetlocate-local.txt

Seebug

  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:7461
    last seen2017-11-19
    modified2007-11-08
    published2007-11-08
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-7461
    titleIBM AIX &lt;= 5.3.0 setlocale() Local Privilege Escalation Exploit
  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:64985
    last seen2017-11-19
    modified2014-07-01
    published2014-07-01
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-64985
    titleIBM AIX <= 5.3.0 - setlocale() Local Privilege Escalation Exploit

References