CVE-2008-4018
First published: Wed Sep 10 2008(Updated: )
swcons in bos.rte.console in IBM AIX 5.2.0 through 6.1.1 allows local users in the system group to create or overwrite an arbitrary file, and establish weak permissions and root ownership for this file, via unspecified vectors. NOTE: this can be leveraged to gain privileges. NOTE: this issue exists because of an incomplete fix for CVE-2007-5805.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM AIX | =5.3 | |
| IBM AIX | =5.2 | |
| IBM AIX | =6.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.ibm.com/support/docview.wss?uid=isg1IZ18341
- http://aix.software.ibm.com/aix/efixes/security/swcons_advisory.asc
- http://www.ibm.com/support/docview.wss?uid=isg1IZ18338
- http://www.ibm.com/support/docview.wss?uid=isg1IZ18335
- http://www.securityfocus.com/bid/30999
- http://secunia.com/advisories/31739
- http://www.ibm.com/support/docview.wss?uid=isg1IZ28943
- http://www.ibm.com/support/docview.wss?uid=isg1IZ18334
- http://securitytracker.com/id?1020818
- http://www.ibm.com/support/docview.wss?uid=isg1IZ18339
- http://www.vupen.com/english/advisories/2008/2490
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44903
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5932
Frequently Asked Questions
What is the severity of CVE-2008-4018?
CVE-2008-4018 is classified as a high severity vulnerability due to its potential for privilege escalation.
How do I fix CVE-2008-4018?
To mitigate CVE-2008-4018, it is recommended to apply the appropriate patches provided by IBM for affected versions of AIX.
Who is affected by CVE-2008-4018?
CVE-2008-4018 affects local users in the system group on IBM AIX versions 5.2.0 through 6.1.1.
What can attackers do with CVE-2008-4018?
Attackers can exploit CVE-2008-4018 to create or overwrite arbitrary files, potentially gaining elevated privileges.
Is CVE-2008-4018 a remote vulnerability?
No, CVE-2008-4018 is a local vulnerability that requires authenticated access to the system for exploitation.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/ibm
- canonical/ibm aix
- version/ibm aix/5.3
- version/ibm aix/5.2
- version/ibm aix/6.1