Lucene search

PRIOn knowledge basePRION:CVE-2008-4638

HistoryOct 21, 2008 - 6:00 p.m.

Code injection

2008-10-2118:00:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

qioadmin in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, allows local users to read arbitrary files by causing qioadmin to write a file’s content to standard error in an error message.

CPENameOperatorVersion
veritas_file_systemeq5.0 mp2-aix
veritas_file_systemeq5.0 mp2-linux
veritas_file_systemeq5.0 mp2-solaris

Name	Operator	Version
veritas_file_system	eq	5.0 mp2-aix
veritas_file_system	eq	5.0 mp2-linux
veritas_file_system	eq	5.0 mp2-solaris

References

seer.entsupport.symantec.com/docs/310872.htm

www.security-objectives.com/advisories/SECOBJSADV-2008-05.txt

www.securityfocus.com/archive/1/497675/100/0/threaded

www.securityfocus.com/bid/31679

www.symantec.com/avcenter/security/Content/2008.10.20.html

www.vupen.com/english/advisories/2008/2875

exchange.xforce.ibmcloud.com/vulnerabilities/46009

6.8 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for PRION:CVE-2008-4638