Rhino Security Labs

IBM AIX lmscode Local Privilege Escalation Vulnerability

Vulnerability Details

CVSS Rating: 7.8 (high)


Disclosing Company: Rhino Security Labs

Date: 02/01/2017

Status: Published

Affected software/version:
IBM AIX 5.3, 6.1, 7.1, and 7.2


Disclosure Date


Vulnerability Description

The 'lsmcode' binary contained a regression issue which circumvented fixes for CVE-2014-3074, which was a Local Privilege Escalation (LPE) vulnerability in AIX's malloc implementation. The vulnerability allows a non-privileged user to escalate to superuser (root) privileges.

CVSS Metrics

CVSS Rating (version 3.0)

7.8 (High)

Impact Score

Exploitability Score



Attack Vector

Local Privilege Escalation

Attack Complexity (AC)Low Privileges Required (PR)Low User Interaction (UI)None Scope (S)Unchanged

Confidentiality (C)High Integrity (I)High Availability (A)High