04 May 2012
This covers vulnerabilities where a user is able to conduct certain tasks with the privileges of other users or administrative users.
This typically includes cases where a local user on a client or server system can gain access to the administrator or root account thus taking full control of the system.
A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to gain escalated privileges.
The vulnerability is caused due to an error within the "getpwnam()" function within LDAP authentication and can be exploited to gain additional privileges.
Successful exploitation requires that extended LDAP user filtering is configured.
The vulnerability is reported in versions 5.3, 6.1, and 7.1.
Apply fixes (please see the vendor's advisory for details).
Reported by the vendor.