IBM AIX LSMCODE Environment Variable Local Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

IBM AIX LSMCODE Environment Variable Local Buffer Overflow Vulnerability

Insufficient bounds checking in the lsmcode utility will allow locally based attackers to cause memory to be corrupted with attacker-supplied data. As a result, it is possible to exploit this condition to execute arbitrary attacker-supplied instructions with elevated privileges.