CVE-2005-2232

IBM AIX 5.1.0-5.3.0 - Buffer Overflow via Long Command Line Argument

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2232.

AI-analyzed exploit summary This exploit targets a buffer overflow in IBM AIX's paginit utility (CVE-2005-2232) by overflowing environment variables to execute shellcode, granting root access. The shellcode spawns a /bin/sh shell, and the exploit is tailored for PowerPC architecture.

Description

Buffer overflow in invscout in IBM AIX 5.1.0 through 5.3.0 might allow local users to execute arbitrary code via a long command line argument.

Exploits (1)

exploitdb WORKING POC
clocalaix
https://www.exploit-db.com/exploits/1046

This exploit targets a buffer overflow in IBM AIX's paginit utility (CVE-2005-2232) by overflowing environment variables to execute shellcode, granting root access. The shellcode spawns a /bin/sh shell, and the exploit is tailored for PowerPC architecture.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: IBM AIX paginit (tested on AIX 5.2)
No auth needed
Prerequisites: Access to a vulnerable AIX system with paginit installed · Ability to execute the exploit binary
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15636
Exploit, Vendor Advisory x_refsource_confirm
http://www.securityfocus.com/advisories/8816
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13909
Exploit, Vendor Advisory x_refsource_misc
http://www.caughq.org/advisories/CAU-2005-0002.txt
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014132

Scores

EPSS 0.0033
EPSS Percentile 56.3%

Details

Status published
Products (3)
ibm/aix 5.1
ibm/aix 5.2
ibm/aix 5.3
Published Jul 12, 2005
Tracked Since Feb 18, 2026