CVE-2008-4638 - компьютерная безопасность: уязвимости и эксплоиты

[RU] switch to
English Version

CVE CVE-2008-4638
Статус Candidate
Описание qioadmin in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, allows local users to read arbitrary files by causing qioadmin to write a file's content to standard error in an error message.
Важность Medium
CVSS score 4,6
CVSS vector (AV:L/AC:L/Au:S/C:C/I:N/A:N)
Phase Assigned (10.08.2011)
NVD: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4638
References BID : 31679
BUGTRAQ : 20081022 SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability
CONFIRM : http://seer.entsupport.symantec.com/docs/310872.htm
CONFIRM : http://www.symantec.com/avcenter/security/Content/...
MISC : http://www.security-objectives.com/advisories/SECO...
VUPEN : ADV-2008-2875
XF : symantec-vxfs-qioadmin-info-disclosure(46009)
SecurityVulns: Несанкционированный доступ к файлам в Symantec Veritas Storage Foundation

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород

test server