Privilege Escalation in BMC Patrol by BMC Software
CVE-2017-13130

7.8HIGH

Key Information:

Vendor: Bmc
Status: Patrol
Vendor: CVE Published:; 23 August 2017

What is CVE-2017-13130?

A privilege escalation vulnerability exists in BMC Patrol due to improper handling of the setuid root permission on the libmcmclnx.so file. Local users can exploit this issue by placing a crafted version of the library in the current working directory, allowing them to gain elevated privileges. This flaw arises from the RPATH variable beginning with the .: substring, which facilitates loading malicious code.

References

https://github.com/itm4n/bmc-patrol-mcmnm-privesc

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 23, 2017
Vulnerability Reserved
Aug 22, 2017

JSON

Bmc

What is CVE-2017-13130?

References

CVSS V3.1

Timeline