CVE-2008-1599
CVE-2008-1599
The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://securitytracker.com/id?1019604https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5468http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4156http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4157http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4158http://www.ibm.com/support/docview.wss?uid=isg1IZ16975http://www.ibm.com/support/docview.wss?uid=isg1IZ16991http://www.ibm.com/support/docview.wss?uid=isg1IZ17058http://www.ibm.com/support/docview.wss?uid=isg1IZ17059http://www.vupen.com/english/advisories/2008/0865