VYPR
Unrated severityNVD Advisory· Published Mar 31, 2008· Updated Jun 16, 2026

CVE-2008-1595

CVE-2008-1595

Description

The proc filesystem in the kernel in IBM AIX 5.2 and 5.3 does not properly enforce directory permissions when a file executing from a directory has weaker permissions than the directory itself, which allows local users to obtain sensitive information.

Affected products

4
  • IBM/Aix4 versions
    cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
    • (no CPE)range: 5.2, 5.3

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.