Back to search
CVE-2008-4018
Published: Sep 10, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
swcons in bos.rte.console in IBM AIX 5.2.0 through 6.1.1 allows local users in the system group to create or overwrite an arbitrary file, and establish weak permissions and root ownership for this file, via unspecified vectors. NOTE: this can be leveraged to gain privileges. NOTE: this issue exists because of an incomplete fix for CVE-2007-5805.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://aix.software.ibm.com/aix/efixes/security/swcons_advisory.asc
x_refsource_CONFIRM
31739
third-party-advisory
x_refsource_SECUNIA
IZ18335
vendor-advisory
x_refsource_AIXAPAR
ADV-2008-2490
vdb-entry
x_refsource_VUPEN
IZ18334
vendor-advisory
x_refsource_AIXAPAR
IZ18338
vendor-advisory
x_refsource_AIXAPAR
ibm-aix-swcons-code-execution(44903)
vdb-entry
x_refsource_XF
IZ28943
vendor-advisory
x_refsource_AIXAPAR
IZ18339
vendor-advisory
x_refsource_AIXAPAR
30999
vdb-entry
x_refsource_BID
IZ18341
vendor-advisory
x_refsource_AIXAPAR
1020818
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:5932
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now