← volver
CVE-2008-1599

CVE-2008-1599

EPSS 0.4%
The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://securitytracker.com/id?1019604https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5468http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4156http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4157http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4158http://www.ibm.com/support/docview.wss?uid=isg1IZ16975http://www.ibm.com/support/docview.wss?uid=isg1IZ16991http://www.ibm.com/support/docview.wss?uid=isg1IZ17058http://www.ibm.com/support/docview.wss?uid=isg1IZ17059http://www.vupen.com/english/advisories/2008/0865