Lucene search
Veracode Vulnerability DatabaseVERACODE:24980HistoryApr 10, 2020 - 1:11 a.m.
Arbitrary Code Execution
2020-04-1001:11:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.0004 Low
EPSS
Percentile
10.0%
ibutils is vulnerable to arbitrary code execution. The vulnerability exists as it was found that the ibmssh executable had an insecure relative RPATH (runtime library search path) set in the ELF (Executable and Linking Format) header. A local user able to convince another user to run ibmssh in an attacker-controlled directory could run arbitrary code with the privileges of the victim.
Related
openvas
openvas
RedHat Update for ibutils RHSA-2012:0311-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2012-0311)
2015-10-06 00:00:00
RedHat Update for ibutils RHSA-2012:0311-03
2012-02-21 00:00:00
cve
cve
CVE-2008-3277
2014-04-15 23:55:06
nessus
nessus
Scientific Linux Security Update : ibutils on SL5.x i386/x86_64 (20120221)
2012-08-01 00:00:00
RHEL 5 : ibutils (RHSA-2012:0311)
2012-02-21 00:00:00
Oracle Linux 5 : ibutils (ELSA-2012-0311)
2013-07-12 00:00:00
prion
prion
Design/Logic Flaw
2014-04-15 23:55:00
redhat
redhat
(RHSA-2012:0311) Low: ibutils security and bug fix update
2012-02-21 00:00:00
debiancve
debiancve
CVE-2008-3277
2014-04-15 23:55:06
oraclelinux
oraclelinux
ibutils security and bug fix update
2012-03-01 00:00:00
ubuntucve
ubuntucve
CVE-2008-3277
2014-04-15 00:00:00
cvelist
cvelist
CVE-2008-3277
2014-04-15 18:00:00
nvd
nvd
CVE-2008-3277
2014-04-15 23:55:06