CVE-2001-1080

AIX 4.3.x-5.1 - Privilege Escalation

Title source: llm

Description

diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.

Exploits (1)

exploitdb WORKING POC VERIFIED

by watercloud · bashlocalaix

https://www.exploit-db.com/exploits/20965

View Code ZIP pw:eip

References (3)

[Various Sources] http://www-1.ibm.com/services/continuity/recover1.nsf/MSS/MSS-OAR-E01-2001.225.1/%24file/oar225.txt

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/6734

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/2916

Scores

EPSS 0.0341

EPSS Percentile 87.5%

Details

Status published

Products (2)

ibm/aix 4.3

ibm/aix 5.1

Published Jun 19, 2001

Tracked Since Feb 18, 2026