CVE-2010-1347

Director Agent 6.1 before 6.1.2.3 in IBM Systems Director on AIX and Linux uses incorrect permissions for the (1) diruninstall and (2) opt/ibm/director/bin/wcitinst scripts, which allows local users to gain privileges by executing these scripts.

Published: Apr 12, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-1347
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / director_agent	6.1	6.1.x
ibm / director_agent	6.1.2	6.1.2.x

http://osvdb.org/63595
http://secunia.com/advisories/39194
http://www-01.ibm.com/support/docview.wss?uid=isg1PM08236
http://www.securityfocus.com/bid/39305
http://www.securitytracker.com/id?1023831
http://www.vupen.com/english/advisories/2010/0830
https://exchange.xforce.ibmcloud.com/vulnerabilities/57611

Vulnerability Database

289,697

CVE-2010-1347