Hi to all.. I am trying to get general information on the AIX root privileges as posted in CyberNotes Issue 2004 -05 pg 13 and Issue 2004 -01 pg 12.
From CyberNotes Issue 2004-05, page 13: "A vulnerability exists in the ‘rexecd’ implementation, which could let a remote malicious user obtain ROOT privileges." IBM MSS-OAR-E01-2004:0303.1
From CyberNotes Issue 2004-01, page 12: "A vulnerability exists in the ‘diag’ utility due to an unspecified error, which could let a malicious user obtain root privileges." IBM Advisory MSS-OAR-E01-2003:1599.1
From CyberNotes Issue 2004-01, page 12: "A format string vulnerability exists in ‘eng,’ which could let a malicious user execute arbitrary code." IBM Advisory MSS-OAR-E01-2003:1600.1
I had a look at the IBM site but could not find related articles...
General information needed are
1. how the vulnerability works
2. where/how to find fixes
thnkxs in advance
From CyberNotes Issue 2004-05, page 13: "A vulnerability exists in the ‘rexecd’ implementation, which could let a remote malicious user obtain ROOT privileges." IBM MSS-OAR-E01-2004:0303.1
From CyberNotes Issue 2004-01, page 12: "A vulnerability exists in the ‘diag’ utility due to an unspecified error, which could let a malicious user obtain root privileges." IBM Advisory MSS-OAR-E01-2003:1599.1
From CyberNotes Issue 2004-01, page 12: "A format string vulnerability exists in ‘eng,’ which could let a malicious user execute arbitrary code." IBM Advisory MSS-OAR-E01-2003:1600.1
I had a look at the IBM site but could not find related articles...
General information needed are
1. how the vulnerability works
2. where/how to find fixes
thnkxs in advance