Local Privilege Escalation Vulnerability in TIBCO Runtime Agent and ActiveMatrix BusinessWorks
CVE-2010-0184

Currently unrated

Key Information:

Vendor: Tibco
Status: Runtime Agent
Vendor: CVE Published:; 14 January 2010

Summary

The components of TIBCO Domain Utility in TIBCO Runtime Agent, specifically domainutility and domainutilitycmd, have been identified to set weak permissions on domain properties files. This improper configuration can allow local users to gain unauthorized access to domain administrator credentials. As a result, these users could potentially escalate their privileges across all domain systems through various unidentified vectors, posing a significant security risk.

References

http://www.tibco.com/multimedia/security_advisory_runtime...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/37805

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2010/0128

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 14, 2010