CVE-2004-2312

GNU make <4.3.3 - Buffer Overflow

Title source: llm

Description

Buffer overflow in GNU make for IBM AIX 4.3.3, when installed setgid, allows local users to gain privileges via a long CC argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by watercloud · perllocalaix

https://www.exploit-db.com/exploits/23838

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://www.osvdb.org/4391

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/15554

[Patch, Vendor Advisory] http://secunia.com/advisories/11158/

[Exploit] http://www.securityfocus.com/bid/9903

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2004-03/0997.html

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2004-03/1124.html

Scores

EPSS 0.0032

EPSS Percentile 54.8%

Details

Status published

Products (1)

ibm/aix 4.3.3

Published Dec 31, 2004

Tracked Since Feb 18, 2026