The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm aix 5.2 |
||
ibm aix 5.3 |
||
ibm aix 6.1 |