Lucene search

[email protected]CVE-2008-5384

HistoryDec 09, 2008 - 12:30 a.m.

CVE-2008-5384

2008-12-0900:30:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2008-5384

ibm aix

crontab

privilege escalation

nvd

security vulnerability

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

crontab in bos.rte.cron in IBM AIX 6.1.0 through 6.1.2 allows local users with aix.system.config.cron authorization to gain privileges by launching an editor.

Affected configurations

NVD

Node

ibmaixMatch6.1

ibmaixMatch6.1.1

ibmaixMatch6.1.2

CPENameOperatorVersion
ibm:aixibm aixeq6.1
ibm:aixibm aixeq6.1.1
ibm:aixibm aixeq6.1.2

CPE	Name	Operator	Version
ibm:aix	ibm aix	eq	6.1
ibm:aix	ibm aix	eq	6.1.1
ibm:aix	ibm aix	eq	6.1.2

References

aix.software.ibm.com/aix/efixes/security/aix61_advisory.asc

osvdb.org/50218

secunia.com/advisories/32916

www-01.ibm.com/support/docview.wss?uid=isg1IZ30248

www-01.ibm.com/support/docview.wss?uid=isg1IZ34478

www-01.ibm.com/support/docview.wss?uid=isg1IZ34783

www.securityfocus.com/bid/32493

www.securitytracker.com/id?1021291

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5612

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2008-5384

nessus3 prion1 nvd1 cvelist1