CVE-2008-1599

Published: Mar 31, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4157

x_refsource_CONFIRM

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4156

x_refsource_CONFIRM

IZ16975

vendor-advisory

x_refsource_AIXAPAR

1019604

vdb-entry

x_refsource_SECTRACK

oval:org.mitre.oval:def:5468

vdb-entry

signature

x_refsource_OVAL

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4158

x_refsource_CONFIRM

IZ17058

vendor-advisory

x_refsource_AIXAPAR

IZ17059

vendor-advisory

x_refsource_AIXAPAR

IZ16991

vendor-advisory

x_refsource_AIXAPAR

ADV-2008-0865

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-1599

Description

Affected Products

References