CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Director Agent 6.1 before 6.1.2.3 in IBM Systems Director on AIX and Linux uses incorrect permissions for the (1) diruninstall and (2) opt/ibm/director/bin/wcitinst scripts, which allows local users to gain privileges by executing these scripts.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | director_agent | 6.1 | cpe:2.3:a:ibm:director_agent:6.1:*:*:*:*:*:*:* |
ibm | director_agent | 6.1.2 | cpe:2.3:a:ibm:director_agent:6.1.2:*:*:*:*:*:*:* |
ibm | aix | * | cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |