CVE-1999-0803

AIX eNetwork Firewall - Local File Write

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0803. PoCs published by Paul Cammidge.

AI-analyzed exploit summary This exploit leverages a race condition in IBM's eNetwork Firewall for AIX by creating a symbolic link to /etc/passwd in /tmp/fwlsuser.PID, which the fwlsuser script overwrites due to insecure file handling. The script iterates through possible PIDs to exploit the vulnerability.

Description

The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Paul Cammidge · textlocalaix
https://www.exploit-db.com/exploits/19229

This exploit leverages a race condition in IBM's eNetwork Firewall for AIX by creating a symbolic link to /etc/passwd in /tmp/fwlsuser.PID, which the fwlsuser script overwrites due to insecure file handling. The script iterates through possible PIDs to exploit the vulnerability.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Racy
Target: IBM eNetwork Firewall for AIX
No auth needed
Prerequisites: Access to the target system · Ability to create symbolic links in /tmp
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/962
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=92765973207648&w=2

Scores

EPSS 0.0054
EPSS Percentile 41.4%

Details

Status published
Products (2)
ibm/aix_enetwork_firewall 3.2
ibm/aix_enetwork_firewall 3.3
Published May 25, 1999
Tracked Since Feb 18, 2026