Lucene search

[email protected]CVE-2010-1347

HistoryApr 12, 2010 - 5:30 p.m.

CVE-2010-1347

2010-04-1217:30:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2010-1347

ibm systems director

aix

linux

privilege escalation

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Director Agent 6.1 before 6.1.2.3 in IBM Systems Director on AIX and Linux uses incorrect permissions for the (1) diruninstall and (2) opt/ibm/director/bin/wcitinst scripts, which allows local users to gain privileges by executing these scripts.

Affected configurations

NVD

Node

ibmdirector_agentMatch6.1

ibmdirector_agentMatch6.1.2

AND

ibmaix

linuxlinux_kernel

CPENameOperatorVersion
ibm:director_agentibm director agenteq6.1
ibm:director_agentibm director agenteq6.1.2

CPE	Name	Operator	Version
ibm:director_agent	ibm director agent	eq	6.1
ibm:director_agent	ibm director agent	eq	6.1.2

References

osvdb.org/63595

secunia.com/advisories/39194

www-01.ibm.com/support/docview.wss?uid=isg1PM08236

www.securityfocus.com/bid/39305

www.securitytracker.com/id?1023831

www.vupen.com/english/advisories/2010/0830

exchange.xforce.ibmcloud.com/vulnerabilities/57611

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2010-1347

cvelist1 prion1 nvd1