CVE-2008-3248

Currently unrated

Key Information:

Vendor: Symantec
Status: Veritas File System
Vendor: CVE Published:; 21 October 2008

Summary

qiomkfile in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, does not initialize filesystem blocks during creation of a file, which allows local users to obtain sensitive information by creating and then reading files.

References

http://secunia.com/advisories/32332

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1021074

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/31678

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 21, 2008
Vulnerability Reserved
Jul 21, 2008