U radu operacijskog sustava IBM AIX uočen je sigurnosni nedostatak. Riječ je o IBM-ovom operacijskom sustavu čiji se rad temelji na radu operacijskih sustava UNIX. Nedostatak se javlja zbog trenutno nespecificirane pogreške i može dovesti do uspješne autentikacije korisnika s neispravnom lozinkom. Zlouporaba podrazumijeva da je "authtype" postavljeno na "ldap_auth" u "/etc/security/ldap/ldap.cfg" datoteci. Udaljeni, zlonamjerni korisnici tako mogu zaobići postavljena sigurnosna ograničenja i pristupiti osjetljivim podacima. Svim se korisnicima savjetuje primjena objavljene nadogradnje.

IBM AIX LDAP Authentication Bypass Vulnerability
Secunia Advisory 	SA43968 	
Release Date 	2011-04-01
Criticality level 	Moderately criticalModerately critical
Impact 	Security Bypass
Where 	From remote
Authentication level 	Available in Customer Area
  	 
Report reliability 	Available in Customer Area
Solution Status 	Vendor Patch
  	 
Systems affected 	Available in Customer Area
Approve distribution 	Available in Customer Area
  	 
Operating System	
	AIX 6.x

Secunia CVSS Score 	Available in Customer Area
CVE Reference(s) 	No CVE references.

	   	

Description

A vulnerability has been reported in IBM AIX, which can be exploited by malicious people to bypass certain security features.

The vulnerability is caused due to an unspecified error, which can be exploited to successfully authenticate with an incorrect password.

Successful exploitation requires that the "authtype" setting in /etc/security/ldap/ldap.cfg file is set to "ldap_auth". Additionally, the default stanza has to be set to "SYTEM = "LDAP or compat"" if the user does not have an own stanza or, alternatively, the user needs to have a "SYTEM = "LDAP or compat" attribute in the /etc/security/user file.

Solution
Apply APAR IZ97416 when available or apply the fix.
Further details available in Customer Area

Provided and/or discovered by
Reported by the vendor.

Original Advisory
http://aix.software.ibm.com/aix/efixes/security/ldapauth_advisory.asc