CVE-2004-1330

IBM AIX 5.1-5.3 - Local Buffer Overflow via Long Username

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1330. PoCs published by cees-bart.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in AIX 5.2's paginit binary. It uses a crafted environment variable to overwrite the return address and execute shellcode, resulting in arbitrary command execution.

Description

Buffer overflow in paginit in AIX 5.1 through 5.3 allows local users to execute arbitrary code via a long username.

Exploits (1)

exploitdb WORKING POC VERIFIED
by cees-bart · clocalaix
https://www.exploit-db.com/exploits/699

This exploit targets a buffer overflow vulnerability in AIX 5.2's paginit binary. It uses a crafted environment variable to overwrite the return address and execute shellcode, resulting in arbitrary command execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: AIX 5.2 paginit
No auth needed
Prerequisites: Access to the target system · Ability to execute /usr/bin/paginit
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110355931920123&w=2
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY64522&apar=only
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/12043
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY64358&apar=only
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18618
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY64312&apar=only

Scores

EPSS 0.0125
EPSS Percentile 65.5%

Details

Status published
Products (5)
ibm/aix 5.2
ibm/aix 5.2.2
ibm/aix 5.2_l
ibm/aix 5.3
ibm/aix 5.3_l
Published Dec 31, 2004
Tracked Since Feb 18, 2026