CVE-2008-4638

Severity CVSS v4.0:
Pending analysis
Type:
CWE-200 Information Leak / Disclosure
Publication date:
21/10/2008
Last modified:
09/04/2025

Description

qioadmin in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, allows local users to read arbitrary files by causing qioadmin to write a file's content to standard error in an error message.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:aix:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:linux:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:5.0:mp2:solaris:*:*:*:*:*
cpe:2.3:a:symantec:veritas_file_system:unknown:unknown:hp-ux:*:*:*:*:*