CVE-2008-0585 — IBM AIX vulnerability

CWE-2643 documents3 sources

Severity

6.6MEDIUMNVD

EPSS

0.0%

top 85.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedFeb 5

Latest updateMay 1

Description

sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allows local users to "alter the behavior of" this client by overwriting these files.

CVSS vector

AV:L/AC:L/C:C/I:C/A:NExploitability: 3.9 | Impact: 9.2

Affected Packages1 packages

▶NVDibm/aix5.2, 5.3+1

🔴Vulnerability Details

GHSA

GHSA-42q2-w7pp-mx38: sysmgt↗2022-05-01

▶

CVEList

CVE-2008-0585: sysmgt↗2008-02-05

▶