PT-2008-5335 · Ibm · Ibm Aix
Published
2008-09-10
·
Updated
2017-09-29
·
CVE-2008-4018
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM AIX versions 5.2.0 through 6.1.1
Description
The issue in
bos.rte.console in IBM AIX allows local users in the system group to create or overwrite an arbitrary file, establish weak permissions, and set root ownership for this file. This can be leveraged to gain privileges. The issue exists due to an incomplete fix for a previous problem.Recommendations
For IBM AIX versions 5.2.0 through 6.1.1, update to a version that includes a complete fix for the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Aix