Privilege Escalation Vulnerability in IBM Systems Director on AIX and Linux
CVE-2010-1347

Currently unrated

Key Information:

Vendor: IBM
Status: Director Agent
Vendor: CVE Published:; 12 April 2010

Summary

IBM Systems Director versions prior to 6.1.2.3 on AIX and Linux contain a vulnerability due to improper permission settings on critical scripts, including diruninstall and opt/ibm/director/bin/wcitinst. This misconfiguration allows local users to execute these scripts, potentially leading to unauthorized privilege escalation and compromising system integrity. Organizations using these versions need to apply necessary updates to mitigate the risk of exploitation.

References

http://www.securityfocus.com/bid/39305

vdb-entryx_refsource_BID

http://secunia.com/advisories/39194

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/57611

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 12, 2010
Vulnerability Reserved
Apr 12, 2010