Title: IBM AIX Invscout Local Buffer Overflow Vulnerability
Severity: HIGH
Description:
IBM AIX invscout is a command that launches a permanent Inventory Scout server daemon on a local system.
invscout is prone to a local buffer overflow vulnerability. This issue presents itself because the application fails to carry out boundary checks on user-supplied data from the command line. It is reported that this issue may allow a local attacker to gain elevated privileges on a vulnerable computer.
Specifically, this issue arises when a large string value is sent to the application as a command line argument. This can lead to an overflow condition as the value is copied in to process buffers without any boundary checking. An attacker can exploit this to gain elevated privileges by supplying replacement memory addresses and shellcode through the affected argument.
Reportedly invscout runs as setuid root.
Affected Products:
- IBM AIX 5.1.0
- IBM AIX 5.2
- IBM AIX 5.3
References:
- Computer Academic Underground: IBM AIX invscout Commandline Argument Overflow
- IBM: AIX Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
