Untrusted Search Path Vulnerabilities in IBM DB2 Express Edition and IBM Tivoli Monitoring
CVE-2011-4061

Currently unrated

Key Information:

Vendor: IBM
Status: Db2; Tivoli Monitoring For Databases
Vendor: CVE Published:; 18 October 2011

Summary

Multiple untrusted search path vulnerabilities exist in the IBM DB2 Express Edition version 9.7, specifically affecting the components db2rspgn and kbbacf1. These vulnerabilities can be exploited by local users who place a modified library, such as libkbb.so, in the current working directory. When the affected components are executed, they may reference this Trojan horse library instead of the legitimate one, leading to unauthorized privilege escalation. This issue is linked to the handling of the DT_RPATH ELF header, making it crucial for users to apply security measures to mitigate potential exploitation.

References

http://www.securityfocus.com/archive/1/518659

mailing-listx_refsource_BUGTRAQ

http://www.nth-dimension.org.uk/downloads.php?id=83

x_refsource_MISC

http://www.securityfocus.com/bid/51181

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 18, 2011
Vulnerability Reserved
Oct 15, 2011