2 matches found
CVE-2018-11053 iSM: Dell EMC iDRAC Service Module Improper File Permission Vulnerability
Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system /etc/hosts to world writable. A malicious low privileged operating system user or process...
CVE-2018-11053
Dell EMC iDRAC Service Module (iSM) affects Linux and XenServer hosts; affected versions are v3.0.1, v3.0.2, v3.1.0, and v3.2.0. The root cause is that the module, on startup, changes the host OS file /etc/hosts to world-writable, enabling a low-privilege attacker to modify the hosts file and pot...