CVE-2008-1593 — IBM AIX vulnerability

CWE-2643 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 79.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedMar 31

Latest updateMay 1

Description

The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allows local users to read and modify portions of memory and gain privileges via unspecified vectors involving a restart of a 64-bit process, probably related to the as_getadsp64 function.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/aix5.2, 5.3, 6.1+2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-c3j5-429m-ph5q: The checkpoint and restart feature in the kernel in IBM AIX 5↗2022-05-01

▶

CVEList

CVE-2008-1593: The checkpoint and restart feature in the kernel in IBM AIX 5↗2008-03-31

▶