Security Advisory

CVE-2004-1329

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-01-06 05:00:00

Last updated 2024-08-08 00:46:12

Assigner mitre

State PUBLISHED

Description

Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1 through 5.3 allows local users to execute arbitrary programs by modifying the DIAGNOSTICS environment variable to point to a malicious Dctrl program.

← Browse all CVEs View on cve.org ↗