CVE Vulnerability

CVE-2008-0585

sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allows local users to "alter the behavior of" this client by overwriting these files.

6.6 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 9.2

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact NONE

Scope

References
Link Resource
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4066
http://www.ibm.com/support/docview.wss?uid=isg1IY97257
http://secunia.com/advisories/28609 Vendor Advisory
http://www.securityfocus.com/bid/27433
http://www.vupen.com/english/advisories/2008/0261
https://exchange.xforce.ibmcloud.com/vulnerabilities/39906
Configurations

Configuration 1

cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
Information

Published : 2008-02-05 03:00

Updated : 2017-08-08 01:29

NVD link : CVE-2008-0585

Mitre link : CVE-2008-0585

Products Affected
No products.
CWE
CWE-264