CVE-2008-3248

qiomkfile in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, does not initialize filesystem blocks during creation of a file, which allows local users to obtain sensitive information by creating and then reading files.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:aix:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:linux:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:solaris:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:unknown:unknown:hp-ux:*:*:*:*:*

History

No history.

Information

Published : 2008-10-21 18:00

Updated : 2024-02-28 11:21


NVD link : CVE-2008-3248

Mitre link : CVE-2008-3248

CVE.ORG link : CVE-2008-3248


JSON object : View

Products Affected

symantec

  • veritas_file_system
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor