lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.
Ma non spiega quale sia il contenuto della variabile DBGCMD_LQUERYLV.
$ DBGCMD_LQUERYLV="touch testfile"
$ echo "$DBGCMD_LQUERYLV"
touch testfile
$ /usr/sbin/lquerylv -L 'getlvodm -l hd3' -r >/dev/null
$ ls -la testfile
testfile not found
$ oslevel -s
6100-08-03-1339
$ lslpp -L bos.rte.lvm
Fileset Level State Type Description (Uninstaller)
----------------------------------------------------------------------------
bos.rte.lvm 6.1.8.16 C F Logical Volume Manager
Domanda: Che cos'è il "crafted DBGCMD_LQUERYLV" in CVE-2014-8904?