nvd-json-data-feeds/CVE-2008/CVE-2008-05xx/CVE-2008-0585.json

{
  "id": "CVE-2008-0585",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2008-02-05T03:00:00.000",
  "lastModified": "2017-08-08T01:29:40.213",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "sysmgt.websm.webaccess in IBM AIX 5.2 and 5.3 has world writable permissions for unspecified WebSM Remote Client files, which allows local users to \"alter the behavior of\" this client by overwriting these files."
    },
    {
      "lang": "es",
      "value": "sysmgt.websm.webaccess en IBM AIX 5.2 y 5.3 tiene permisos de escritura para ficheros no espedificados del cliente remoto WebSM, lo cual permite a usuarios locales \"cambiar el comportamiento\" de este cliente sobrescribiendo esos ficheros."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:N",
          "accessVector": "LOCAL",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "availabilityImpact": "NONE",
          "baseScore": 6.6
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 3.9,
        "impactScore": 9.2,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "17EECCCB-D7D1-439A-9985-8FAE8B44487B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA8DDF4A-1C5D-4CB1-95B3-69EAE6572507"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.ibm.com/support/docview.wss?uid=isg1IY97257",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securityfocus.com/bid/27433",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2008/0261",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4066",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39906",
      "source": "cve@mitre.org"
    }
  ]
}