Local File Write Vulnerability in IBM InfoSphere DataStage on UNIX
CVE-2015-1900

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Datastage
Vendor: CVE Published:; 29 June 2015

What is CVE-2015-1900?

A vulnerability exists in IBM InfoSphere DataStage across several versions that allows local users on UNIX systems to write to executable files. This could lead to unauthorized escalation of privileges, enabling attackers to obtain root access to the system through unmonitored execution paths.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21902280

x_refsource_CONFIRM

http://www.securityfocus.com/bid/75481

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg1JR52770

vendor-advisoryx_refsource_AIXAPAR

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2015
Vulnerability Reserved
Feb 19, 2015