The Inventory Scout daemon (invscoutd) 1.3.0.0 and 2.0.2 for AIX 4.3.3 and 5.1 allows local users to gain privileges via a symlink attack on a command line argument (log file). NOTE: this might be related to CVE-2006-5002.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm aix 5.1l |
||
ibm aix 4.3.3 |
||
ibm aix 5.1 |