CVE-2003-0579

Currently unrated

Key Information:

Vendor: IBM
Status: U2 Universe
Vendor: CVE Published:; 18 August 2003

Summary

uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.

References

http://archives.neohapsis.com/archives/vulnwatch/2003-q3/...

mailing-listx_refsource_VULNWATCH

http://marc.info/?l=bugtraq&m=105838948002337&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Aug 18, 2003
Vulnerability Reserved
Jul 16, 2003