CVE-2006-4416

N/A Unknown

Published: August 28, 2006 Modified: April 16, 2026

Description

Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

ftp://aix.software.ibm.com/aix/efixes/security/README

Source: cve@mitre.org

http://secunia.com/advisories/21620

Source: cve@mitre.org

http://secunia.com/advisories/22106

Source: cve@mitre.org

http://securitytracker.com/id?1016920

Source: cve@mitre.org

http://www-1.ibm.com/support/docview.wss?uid=isg1IY88699

Source: cve@mitre.org

http://www-1.ibm.com/support/docview.wss?uid=isg1IY88722

Source: cve@mitre.org

http://www-1.ibm.com/support/docview.wss?uid=isg1IY88737

Source: cve@mitre.org

http://www.securityfocus.com/bid/19708

Source: cve@mitre.org

http://www.securityfocus.com/bid/20197

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3389

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3770

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/29165

Source: cve@mitre.org

ftp://aix.software.ibm.com/aix/efixes/security/README