Privilege Escalation in IBM Rational ClearCase
CVE-2013-5373

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearcase
Vendor: CVE Published:; 25 September 2013

Summary

The RemoteClient component in IBM Rational ClearCase versions 8.0.0.03 through 8.0.0.07 and 8.0.1 is susceptible to a privilege escalation issue due to world-writable permissions set on the rcleartool script. This vulnerability can be exploited by local users who can append arbitrary commands, allowing them to gain elevated privileges within the system. Proper permission settings are crucial to mitigating this risk and ensuring system integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21648811

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/86791

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Sep 25, 2013
Vulnerability Reserved
Aug 22, 2013