CVE-2000-1124

IBM AIX 4.3.x - Local Privilege Escalation via piobe Command Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1124. PoCs published by Last Stage of Delirium.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the piobe program on AIX systems (versions 4.1, 4.2, 4.3, and 4.3.x) by manipulating environment variables (PIOSTATUSFILE, PIOTITLE, PIOVARDIR) to overwrite stack variables and execute arbitrary shellcode, leading to local privilege escalation.

Description

Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Last Stage of Delirium · clocalaix

https://www.exploit-db.com/exploits/20455

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the piobe program on AIX systems (versions 4.1, 4.2, 4.3, and 4.3.x) by manipulating environment variables (PIOSTATUSFILE, PIOTITLE, PIOVARDIR) to overwrite stack variables and execute arbitrary shellcode, leading to local privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: IBM AIX piobe (versions 4.1, 4.2, 4.3, 4.3.x)

No auth needed

Prerequisites: Local access to the AIX system · piobe binary must be present and executable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2037

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=97569466809056&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5616

Various Sources vendor-advisory x_refsource_aixapar

http://www-1.ibm.com/support/search.wss?rs=0&q=IY12638&apar=only

Scores

EPSS 0.0089

EPSS Percentile 54.7%

Details

Status published

Products (4)

ibm/aix 4.3

ibm/aix 4.3.1

ibm/aix 4.3.2

ibm/aix 4.3.3

Published Jan 09, 2001

Tracked Since Feb 18, 2026