VYPR
Unrated severityNVD Advisory· Published Mar 31, 2008· Updated Jun 16, 2026

CVE-2008-1599

CVE-2008-1599

Description

The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.

Affected products

5
  • IBM/Aix4 versions
    cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
    • cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*
    • (no CPE)range: 5.2, 5.3, and 6.1

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.