CVE-2004-1329 in AIXinfo

Summary

Untrusted execution path vulnerability in the diag commands (1) lsmcode, (2) diag_exec, (3) invscout, and (4) invscoutd in AIX 5.1 through 5.3 allows local users to execute arbitrary programs by modifying the DIAGNOSTICS environment variable to point to a malicious Dctrl program.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/06/2005

Disclosure

12/20/2004

Moderation

VulDB entry created

Entries

VDB-22564 (1)

CPE

ready

CWE

Unknown

Exploit

Download

CVSS

8.4

EPSS

0.00575

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1329
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1329
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1329/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!