Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-4638

EPSS 0.07% · P21
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-4638

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
qioadmin in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, allows local users to read arbitrary files by causing qioadmin to write a file's content to standard error in an error message.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Symantec Veritas File System qioadmin本地信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
VERITAS File System(VxFS)是Symantec Storage Foundation套件中的文件系统组件。 VxFS的qioadmin工具中存在文件内容泄露漏洞。系统授权访问并可以运行qioadmin工具,可以向qioadmin提供任意文件名并将文件内容重新定向并dump到标准错误输出中。qioadmin工具为set-uid root,非特权用户可以绕过系统文件权限限制访问特权系统信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-4638

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-4638

登录查看更多情报信息。

Same Patch Batch · n/a · 2008-10-21 · 47 CVEs total

CVE-2008-4623DS-Syndicate Joomla! 组件'feed_id' 参数SQL注入漏洞
CVE-2008-4626Fritz Berger yet 'index.php'目录遍历漏洞
CVE-2008-4628myWebland miniBloggie 'del.php' SQL注入漏洞
CVE-2008-4631MUSCLE 'message/Message.cpp' Message::AddToString函数缓冲区溢出漏洞
CVE-2008-4632Kure 'index.php' 多个目录遍历漏洞
CVE-2008-4633Drupal Node Vote Module Cast Vote SQL注入漏洞
CVE-2008-4634Movable Type 未明跨站脚本攻击漏洞
CVE-2008-4635XOOPS 'hisa_cart' Module 远程信息泄露漏洞
CVE-2008-4630MidCOM Framework未明漏洞
CVE-2008-4624Fast Click SQL Lite 'init.php' 远程文件包含漏洞
CVE-2008-4625ShiftThis Newsletter WordPress 插件'stnl_iframe.php' SQL注入漏洞
CVE-2008-4622phpFastNews Cookie 身份认证绕过漏洞
CVE-2008-4621Zeeproperty 'bannerclick.php' SQL注入漏洞
CVE-2008-4620Meeting Room Booking System 'month.php' SQL注入漏洞
CVE-2008-1547Microsoft Outlook Web Access redir.asp URI重新定向漏洞
CVE-2008-4641jhead 'DoCommand()' 任意指令执行漏洞
CVE-2008-4640jhead 'DoCommand()' 任意文件删除漏洞
CVE-2008-4639jhead 'jhead.c' 临时文件攻击漏洞
CVE-2008-4637cpcommerce 脚本注入和跨站脚本漏洞
CVE-2008-4121cpCommerce 多个跨站脚本攻击漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-4638

No comments yet

Leave a comment