Unrated severityNVD Advisory· Published Mar 31, 2008· Updated Jun 16, 2026
CVE-2008-1599
CVE-2008-1599
Description
The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.
Affected products
5Patches
Vulnerability mechanics
References
10- www.ibm.com/support/docview.wssnvdPatch
- www.ibm.com/support/docview.wssnvdPatch
- www.ibm.com/support/docview.wssnvdPatch
- www.ibm.com/support/docview.wssnvdPatch
- securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/0865nvd
- www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjdnvd
- www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjdnvd
- www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjdnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5468nvd
News mentions
0No linked articles in our index yet.