CVE-2008-0585
Published Feb 5, 2008
Last updated 7 years ago
Overview
- Description
- sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allows local users to "alter the behavior of" this client by overwriting these files.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.6
- Impact score
- 9.2
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17EECCCB-D7D1-439A-9985-8FAE8B44487B"
},
{
"criteria": "cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EA8DDF4A-1C5D-4CB1-95B3-69EAE6572507"
}
],
"operator": "OR"
}
]
}
]