Lucene search

MitreCVE-2008-5385

HistoryDec 09, 2008 - 12:30 a.m.

CVE-2008-5385

2008-12-0900:30:00

CWE-264

mitre

web.nvd.nist.gov

cve-2008-5385

ibm aix

enq

bos.rte.printers

file deletion

local users

nvd

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.1

Confidence

Low

EPSS

Percentile

5.1%

JSON

enq in bos.rte.printers in IBM AIX 6.1.0 through 6.1.2, when a print queue is defined in /etc/qconfig, allows local users to delete arbitrary files via unspecified vectors.

Affected configurations

Nvd

Node

ibmaixMatch6.1

ibmaixMatch6.1.1

ibmaixMatch6.1.2

VendorProductVersionCPE
ibmaix6.1cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
ibmaix6.1.1cpe:2.3:o:ibm:aix:6.1.1:*:*:*:*:*:*:*
ibmaix6.1.2cpe:2.3:o:ibm:aix:6.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	6.1	cpe:2.3:o:ibm:aix:6.1:::::::*
ibm	aix	6.1.1	cpe:2.3:o:ibm:aix:6.1.1:::::::*
ibm	aix	6.1.2	cpe:2.3:o:ibm:aix:6.1.2:::::::*

References

aix.software.ibm.com/aix/efixes/security/aix61_advisory.asc

osvdb.org/50217

secunia.com/advisories/32916

www-01.ibm.com/support/docview.wss?uid=isg1IZ33088

www-01.ibm.com/support/docview.wss?uid=isg1IZ34481

www-01.ibm.com/support/docview.wss?uid=isg1IZ34785

www.securityfocus.com/bid/32493

www.securitytracker.com/id?1021290

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.1

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2008-5385