CVE-2001-1080

AIX 4.3.x-5.1 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1080. PoCs published by watercloud.

AI-analyzed exploit summary This exploit leverages a vulnerability in AIX's 'diagrpt' utility, which executes a secondary utility via an environment variable. By manipulating the PATH, an attacker can execute arbitrary code as root, leading to privilege escalation.

Description

diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program.

Exploits (1)

exploitdb WORKING POC VERIFIED
by watercloud · bashlocalaix
https://www.exploit-db.com/exploits/20965

This exploit leverages a vulnerability in AIX's 'diagrpt' utility, which executes a secondary utility via an environment variable. By manipulating the PATH, an attacker can execute arbitrary code as root, leading to privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: AIX 4.x, 5L (diagrpt utility)
No auth needed
Prerequisites: Access to a vulnerable AIX system · Ability to execute the 'diagrpt' utility
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6734
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2916

Scores

EPSS 0.0584
EPSS Percentile 92.2%

Details

Status published
Products (2)
ibm/aix 4.3
ibm/aix 5.1
Published Jun 19, 2001
Tracked Since Feb 18, 2026