CVE-2006-4254

IBM AIX <5.3.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4254. PoCs published by Thomas Pollet.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the setlocale() function on AIX 5.2. It uses a crafted environment variable to trigger the overflow and execute shellcode, resulting in arbitrary command execution.

Description

Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Thomas Pollet · pythonlocalaix
https://www.exploit-db.com/exploits/4612

This exploit targets a buffer overflow vulnerability in the setlocale() function on AIX 5.2. It uses a crafted environment variable to trigger the overflow and execute shellcode, resulting in arbitrary command execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: AIX 5.2 setlocale()
No auth needed
Prerequisites: Access to the target system to set environment variables · Presence of vulnerable AIX 5.2 system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/3327
Various Sources vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY88183&apar=only
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/27996
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19578
Various Sources vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY88512&apar=only
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/28482
Patch vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1016712
Various Sources x_refsource_confirm
ftp://aix.software.ibm.com/aix/efixes/security/README
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/21541
Various Sources vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/search.wss?rs=0&q=IY88528&apar=only

Scores

EPSS 0.0750
EPSS Percentile 93.7%

Details

Status published
Products (3)
ibm/aix 5.1
ibm/aix 5.2
ibm/aix 5.3
Published Aug 21, 2006
Tracked Since Feb 18, 2026