CVE-2013-5467

Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring (ITM) on UNIX allow local users to gain privileges via unspecified vectors.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg21675798	Vendor Advisory
http://www.securityfocus.com/bid/69436
https://exchange.xforce.ibmcloud.com/vulnerabilities/88370

Advertisement

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.1:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.2:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.0:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.3:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.3.0:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.3:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.0:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.1:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.2:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Information

Published : 2014-08-29 02:55

Updated : 2017-08-28 18:33

NVD link : CVE-2013-5467

Mitre link : CVE-2013-5467

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Advertisement

Products Affected

ibm

monitoring_server_\(ms\)_and_shared_libraries_\(ax\)
monitoring_agent_for_unix_logs

linux

linux_kernel

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675798", "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21675798", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/69436", "name": "69436", "tags": [], "refsource": "BID"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88370", "name": "ibm-itm-cve20135467-priv-esc(88370)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring (ITM) on UNIX allow local users to gain privileges via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-5467", "ASSIGNER": "psirt@us.ibm.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2014-08-29T09:55Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-29T01:33Z"}