Vulnerability Description
The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allows local users to read and modify portions of memory and gain privileges via unspecified vectors involving a restart of a 64-bit process, probably related to the as_getadsp64 function.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Aix | 5.2 |
Related Weaknesses (CWE)
References
- http://securitytracker.com/id?1019606
- http://www.ibm.com/support/docview.wss?uid=isg1IZ11820
- http://www.ibm.com/support/docview.wss?uid=isg1IZ12794
- http://www.ibm.com/support/docview.wss?uid=isg1IZ16992
- http://www.ibm.com/support/docview.wss?uid=isg1IZ17111
- http://www.securityfocus.com/bid/28467Patch
- http://www.vupen.com/english/advisories/2008/0865
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://securitytracker.com/id?1019606
- http://www.ibm.com/support/docview.wss?uid=isg1IZ11820
- http://www.ibm.com/support/docview.wss?uid=isg1IZ12794
- http://www.ibm.com/support/docview.wss?uid=isg1IZ16992
FAQ
What is CVE-2008-1593?
CVE-2008-1593 is a vulnerability with a CVSS score of 7.2 (HIGH). The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allows local users to read and modify portions of memory and gain privilege...
How severe is CVE-2008-1593?
CVE-2008-1593 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1593?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Aix.