CVE-2014-0907

Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.ibm.com/support/docview.wss?uid=swg21610582#4	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IT00687
http://www-01.ibm.com/support/docview.wss?uid=swg1IT00627
http://www-01.ibm.com/support/docview.wss?uid=swg1IT00685
http://www.ibm.com/support/docview.wss?uid=swg1IT00686
http://www.ibm.com/support/docview.wss?uid=swg21672100	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IT00684
http://www-01.ibm.com/support/docview.wss?uid=swg1IT00686
http://packetstormsecurity.com/files/126940/IBM-DB2-Privilege-Escalation.html
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0907/
http://seclists.org/fulldisclosure/2014/Jun/7
http://www.securityfocus.com/bid/67617
http://secunia.com/advisories/59451
http://www-01.ibm.com/support/docview.wss?uid=isg400001843
http://www-01.ibm.com/support/docview.wss?uid=isg400001841
http://secunia.com/advisories/59463
http://secunia.com/advisories/60482
http://www-01.ibm.com/support/docview.wss?uid=swg21680454
http://www-304.ibm.com/support/docview.wss?uid=swg21676135
http://www.securitytracker.com/id/1030671
http://www.securitytracker.com/id/1030670
https://exchange.xforce.ibmcloud.com/vulnerabilities/91869

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:db2:10.1.0.3:::::::*
	cpe:2.3:a:ibm:db2:10.1.0.2:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.5:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.4:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.9:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.8:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.1:::::::*
	cpe:2.3:a:ibm:db2:9.7:::::::*
	cpe:2.3:a:ibm:db2:10.1.0.1:::::::*
	cpe:2.3:a:ibm:db2:10.1:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.3:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.6:::::::*
	cpe:2.3:a:ibm:db2:9.5:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.7:::::::*
	cpe:2.3:a:ibm:db2:10.5.0.1:::::::*
	cpe:2.3:a:ibm:db2:9.7.0.2:::::::*
	cpe:2.3:a:ibm:db2:10.5.0.2:::::::*
	cpe:2.3:a:ibm:db2:10.5:::::::*

Information

Published : 2014-05-30 16:55

Updated : 2017-08-28 18:34

NVD link : CVE-2014-0907

Mitre link : CVE-2014-0907

JSON object : View

CWE

NVD-CWE-Other

Products Affected

ibm

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.ibm.com/support/docview.wss?uid=swg21610582#4", "name": "http://www.ibm.com/support/docview.wss?uid=swg21610582#4", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT00687", "name": "IT00687", "tags": [], "refsource": "AIXAPAR"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT00627", "name": "IT00627", "tags": [], "refsource": "AIXAPAR"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT00685", "name": "IT00685", "tags": [], "refsource": "AIXAPAR"}, {"url": "http://www.ibm.com/support/docview.wss?uid=swg1IT00686", "name": "http://www.ibm.com/support/docview.wss?uid=swg1IT00686", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.ibm.com/support/docview.wss?uid=swg21672100", "name": "http://www.ibm.com/support/docview.wss?uid=swg21672100", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT00684", "name": "IT00684", "tags": [], "refsource": "AIXAPAR"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT00686", "name": "IT00686", "tags": [], "refsource": "AIXAPAR"}, {"url": "http://packetstormsecurity.com/files/126940/IBM-DB2-Privilege-Escalation.html", "name": "http://packetstormsecurity.com/files/126940/IBM-DB2-Privilege-Escalation.html", "tags": [], "refsource": "MISC"}, {"url": "https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0907/", "name": "https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-0907/", "tags": [], "refsource": "MISC"}, {"url": "http://seclists.org/fulldisclosure/2014/Jun/7", "name": "20140603 CVE-2014-0907 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH In IBM DB2", "tags": [], "refsource": "FULLDISC"}, {"url": "http://www.securityfocus.com/bid/67617", "name": "67617", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/59451", "name": "59451", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843", "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841", "name": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841", "tags": [], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/59463", "name": "59463", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/60482", "name": "60482", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21680454", "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21680454", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www-304.ibm.com/support/docview.wss?uid=swg21676135", "name": "http://www-304.ibm.com/support/docview.wss?uid=swg21676135", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securitytracker.com/id/1030671", "name": "1030671", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.securitytracker.com/id/1030670", "name": "1030670", "tags": [], "refsource": "SECTRACK"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/91869", "name": "ibm-cve20140907-priv-escalation(91869)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-0907", "ASSIGNER": "psirt@us.ibm.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2014-05-30T23:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:db2:10.1.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.1.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.5.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:9.7.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.5.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-29T01:34Z"}

7.2 /10