IBM Systems Director Agent Insecure File Permissions Vulnerabilities
BID:39305
Info
IBM Systems Director Agent Insecure File Permissions Vulnerabilities
| Bugtraq ID: | 39305 |
| Class: | Design Error |
| CVE: |
CVE-2010-1347 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 07 2010 12:00AM |
| Updated: | Apr 13 2015 09:02PM |
| Credit: | IBM Customer Test |
| Vulnerable: |
IBM Systems Director Agent 6.2 |
| Not Vulnerable: |
IBM Systems Director Agent 6.1.2 3 |
Discussion
IBM Systems Director Agent Insecure File Permissions Vulnerabilities
IBM Systems Director Agent is prone to multiple security vulnerabilities because it sets insecure file permissions.
An attacker can exploit these issues to perform unauthorized actions by executing the affected scripts.
IBM Systems Director Agent 6.1.2 is vulnerable; other versions may also be affected.
IBM Systems Director Agent is prone to multiple security vulnerabilities because it sets insecure file permissions.
An attacker can exploit these issues to perform unauthorized actions by executing the affected scripts.
IBM Systems Director Agent 6.1.2 is vulnerable; other versions may also be affected.
Exploit / POC
IBM Systems Director Agent Insecure File Permissions Vulnerabilities
No exploit is required for this issue.
No exploit is required for this issue.
Solution / Fix
IBM Systems Director Agent Insecure File Permissions Vulnerabilities
Solution:
Reportedly the issues will be fixed in version 6.1.2.3.
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution:
Reportedly the issues will be fixed in version 6.1.2.3.
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
References
IBM Systems Director Agent Insecure File Permissions Vulnerabilities
References:
References: