CVE-2008-1599

N/A Unknown

Published: March 31, 2008 Modified: April 23, 2026

Description

The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://securitytracker.com/id?1019604

Source: cve@mitre.org

http://www.ibm.com/support/docview.wss?uid=isg1IZ16975

Source: cve@mitre.org

Patch

http://www.ibm.com/support/docview.wss?uid=isg1IZ16991

Source: cve@mitre.org

Patch

http://www.ibm.com/support/docview.wss?uid=isg1IZ17058

Source: cve@mitre.org

Patch

http://www.ibm.com/support/docview.wss?uid=isg1IZ17059

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2008/0865

Source: cve@mitre.org

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4156

Source: cve@mitre.org

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4157

Source: cve@mitre.org

http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4158

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5468

Source: cve@mitre.org

http://securitytracker.com/id?1019604