There is a remotely exploitable flaw in IBM's AIX 5.1L login when using loadable authentication modules. This does not affect AIX 4.3 and earlier.
IBM AIX 5.1L login, with loadable authentication modules enabled and some non-default configurations, will permit users to login with an invalid password. This can be used to gain root access to the system. IBM AIX 4.3 and earlier are not affected by this vulnerability. IBM has issued an advisory addressing this issue.
An intruder can gain root access to the system.
Disable integrated login permissions.
Our thanks to IBM for the information contained in their advisory.
This document was written by Jason Rafail.
|Date First Published:||2001-12-21|
|Date Last Updated:||2001-12-21 21:12 UTC|