CVE-2008-0586

Sažetak

Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors related to the (1) lchangevg, (2) ldeletepv, (3) putlvodm, (4) lvaryoffvg, and (5) lvgenminor programs in bos.rte.lvm; and the (6) tellclvmd program in bos.clvm.enh.

Reference

http://aix.software.ibm.com/aix/efixes/security/lvm_advisory.asc
http://osvdb.org/40427
http://osvdb.org/40428
http://osvdb.org/40429
http://secunia.com/advisories/28609
http://www.ibm.com/support/docview.wss?uid=isg1IY98331
http://www.ibm.com/support/docview.wss?uid=isg1IY98340
http://www.ibm.com/support/docview.wss?uid=isg1IY99537
http://www.ibm.com/support/docview.wss?uid=isg1IZ00559
http://www.ibm.com/support/docview.wss?uid=isg1IZ10828
http://www.securityfocus.com/bid/27431
http://www.vupen.com/english/advisories/2008/0261
http://www-1.ibm.com/support/docview.wss?uid=isg1IY98448
http://www-1.ibm.com/support/docview.wss?uid=isg1IY98450
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4068
https://exchange.xforce.ibmcloud.com/vulnerabilities/39907
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5704

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-09-2017 - 01:30

Objavljeno

05-02-2008 - 03:00