PT-2010-3044 · Ibm · Ibm Systems Director

Publicado

2010-04-12

Atualizado

2017-08-17

CVE-2010-1347

CVSS v2.0

7.2

Alta

Vetor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM Systems Director version 6.1 before 6.1.2.3

Description The issue is related to incorrect permissions for the diruninstall and opt/ibm/director/bin/wcitinst scripts in Director Agent, allowing local users to gain privileges by executing these scripts.

Recommendations For version 6.1 before 6.1.2.3, update to version 6.1.2.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the diruninstall and opt/ibm/director/bin/wcitinst scripts to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2010-1347

Produtos afetados

Ibm Systems Director

PT-2010-3044 · Ibm · Ibm Systems Director

CVE-2010-1347

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8