IBM AIX Diag Local Privilege Escalation Vulnerabilities

IBM AIX Diag Local Privilege Escalation Vulnerabilities

diag is reported prone to a local privilege escalation vulnerability. This issue is due to a failure of certain diag applications to properly implement security controls when executing an application specified by the 'DIAGNOSTICS' environment variable.

A local attacker may leverage this issue to gain superuser privileges on a computer running the affected software.