Computer Security

CVE-2008-3248
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2008-3248
StatusCandidate
Descriptionqiomkfile in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, does not initialize filesystem blocks during creation of a file, which allows local users to obtain sensitive information by creating and then reading files.
PhaseAssigned (21.07.2008)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3248
ReferencesBID : 31678
 BUGTRAQ : 20081021 SECOBJADV-2008-04: Symantec Veritas Storage Foundation Memory Disclosure Vulnerability
 CONFIRM : http://seer.entsupport.symantec.com/docs/310872.htm
 CONFIRM : http://www.symantec.com/avcenter/security/Content/...
 MISC : http://www.security-objectives.com/advisories/SECO...
 SECTRACK : 1021074
 VUPEN : ADV-2008-2875
 XF : symantec-vxfs-qiomkfile-info-disclosure(46008)
SecurityVulns:Symantec Veritas Storage Foundation unauthorized access
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server