CVE-2008-2515

Description

Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related to an "environment variable handling error."

References

Link	Tags
http://secunia.com/advisories/30349	third party advisory vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ22350	patch vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ20635	patch vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/42579	vdb entry
http://www.vupen.com/english/advisories/2008/1626/references	vdb entry vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ21506	patch vendor advisory
http://www.securityfocus.com/bid/29325	patch vdb entry
http://aix.software.ibm.com/aix/efixes/security/iostat_advisory.asc	vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ22349	patch vendor advisory
http://www.ibm.com/support/docview.wss?uid=isg1IZ22351	patch vendor advisory
http://securitytracker.com/id?1020085	vdb entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5424	signature vdb entry

Frequently Asked Questions

What is the severity of CVE-2008-2515?: CVE-2008-2515 has been scored as a high severity vulnerability.
How to fix CVE-2008-2515?: To fix CVE-2008-2515, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2008-2515 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2008-2515 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-264 – Permissions, Privileges, and Access Controls

References

Frequently Asked Questions