English
Log in
Search
The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service. Internet threat level: 1

HomeDescriptionsSA49073

IBM AIX "getpwnam()" LDAP Filtering Privilege Escalation Vulnerability


Secunia ID

SA49073
CVE-ID

CVE-2012-0745
Release Date

04 May 2012
Criticality

Less Critical
Solution Status

Vendor Patch
Where

Local system
Impact
Privilege escalation

This covers vulnerabilities where a user is able to conduct certain tasks with the privileges of other users or administrative users.

This typically includes cases where a local user on a client or server system can gain access to the administrator or root account thus taking full control of the system.
Description

A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to gain escalated privileges.

The vulnerability is caused due to an error within the "getpwnam()" function within LDAP authentication and can be exploited to gain additional privileges.

Successful exploitation requires that extended LDAP user filtering is configured.

The vulnerability is reported in versions 5.3, 6.1, and 7.1.
Solution

Apply fixes (please see the vendor's advisory for details).
Reported by

Reported by the vendor.
Original Advisory

http://aix.software.ibm.com/aix/efixes/security/ldapauth_advisory2.asc

© 1997-2013 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.
The authors' opinions do not necessarily reflect the official positions of Kaspersky Lab.

kaspersky.com

Products

eStore

Threats

Downloads

Support

Partners

About Us

Search

securelist.com

Threats

Analysis

Blog

Descriptions

Glossary

RSS feeds

Contacts

Search