Exploit for #VU1022 Privilege escalation in IBM AIX and IBM VIOS

Exploit for #VU1022 Privilege escalation in IBM AIX and IBM VIOS

Published: 2020-03-18 | Updated: 2020-03-18

Vulnerability identifier: #VU1022

Vulnerability risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2016-3053

CWE-ID: CWE-264

Exploitation vector: Local

Exploits in database: 2

March 18, 2020
- CVEs (A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.) [Github]
- IBM AIX 6.1/7.1/7.2.0.2 - 'lsmcode' Privilege Escalation [Exploit-DB]

Impact: Information disclosure and data manipulation

Vulnerable software:
IBM AIX
Operating systems & Components / Operating system
IBM VIOS
Server applications / Application servers

Vendor: IBM Corporation