Vulnerabilities > CVE-2008-1594 - Denial-Of-Service vulnerability in IBM AIX 5.2/5.3/6.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size.
Oval
accepted | 2008-07-07T04:00:22.494-04:00 | ||||||||||||
class | vulnerability | ||||||||||||
contributors |
| ||||||||||||
definition_extensions |
| ||||||||||||
description | The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service (remote node crash) by using chfs or lreducelv to reduce a filesystem's size. | ||||||||||||
family | unix | ||||||||||||
id | oval:org.mitre.oval:def:5434 | ||||||||||||
status | accepted | ||||||||||||
submitted | 2008-04-18T15:10:44.000-05:00 | ||||||||||||
title | IBM AIX Multiple Privilege Escalation and Security Bypass Vulnerabilities | ||||||||||||
version | 43 |
References
- http://securitytracker.com/id?1019606
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04946
- http://www.ibm.com/support/docview.wss?uid=isg1IZ04953
- http://www.ibm.com/support/docview.wss?uid=isg1IZ05246
- http://www.securityfocus.com/bid/28467
- http://www.vupen.com/english/advisories/2008/0865
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4153
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4154
- http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4155
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5434