PT-2010-5392 · Ibm · Ibm Systems Director
Published
2010-11-16
·
Updated
2017-08-17
·
CVE-2010-4274
CVSS v2.0
4.4
Medium
| Vector | AV:L/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
IBM Systems Director version 6.2.0
Description
The issue allows local users to gain privileges by leveraging system group membership due to the
reset diragent keys in the Common agent having 754 permissions.Recommendations
For IBM Systems Director version 6.2.0, consider changing the permissions of
reset diragent keys to prevent local users from gaining privileges. As a temporary workaround, restrict access to the Common agent to minimize the risk of exploitation.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Systems Director