certfr_avis - certa-2011-avi-725

CERTA-2011-AVI-725

Vulnerability from certfr_avis

L'agent « IBM Tivoli Monitoring » (ITMA) inclus dans « IBM DB2 » versions 9.5 et 9.7 contient une vulnérabilité permettant à un utilisateur, local, malintentionné d'élever ses privilèges.

Description

Une vulnérabilité présente dans ITMA peut permettre à un utilisateur local d'éléver ses privilèges. Cette vulnérabilité n'est pas présente dans la version de DB2 pour Windows.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les produits suivants inclus dans les version 9.5 et 9.7 d'IBM DB2 sur AIX, Linux, HP et Solaris :

IBM® DB2 9.7 Express Edition ;
IBM® DB2 9.7 Workgroup Server Edition ;
IBM® DB2 9.7 Enterprise Server Edition ;
IBM® DB2 9.7 Advanced Enterprise Server Edition ;
IBM® DB2 Connect 9.7 Application Server Edition ;
IBM® DB2 Connect 9.7 Enterprise Edition ;
IBM® DB2 Connect 9.7 Unlimited Edition for System i ;
IBM® DB2 Connect 9.7 Unlimited Edition for System z ;
IBM® DB2 9.5 Express Edition ;
IBM® DB2 9.5 Workgroup Server Edition ;
IBM® DB2 9.5 Enterprise Server Edition ;
IBM® DB2 9.5 Advanced Enterprise Server Edition ;
IBM® DB2 Connect 9.5 Application Server Edition ;
IBM® DB2 Connect 9.5 Enterprise Edition ;
IBM® DB2 Connect 9.5 Unlimited Edition for System i ;
IBM® DB2 Connect 9.5 Unlimited Edition for System z.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité d'IBM n˚1576372 du 22 décembre 2011	None	vendor-advisory
Bulletin de sécurité IBM swg21576372 du 22 décembre 2011 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes produits suivants inclus dans les  version 9.5 et 9.7 d\u0027IBM DB2 sur AIX, Linux, HP et Solaris :  \u003cUL\u003e    \u003cLI\u003eIBM\u00ae DB2 9.7 Express Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.7 Workgroup Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.7 Enterprise Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.7 Advanced Enterprise Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.7 Application Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.7 Enterprise Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.7 Unlimited Edition for System i ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.7 Unlimited Edition for System z ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.5 Express Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.5 Workgroup Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.5 Enterprise Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 9.5 Advanced Enterprise Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.5 Application Server Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.5 Enterprise Edition ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.5 Unlimited Edition for System i ;\u003c/LI\u003e    \u003cLI\u003eIBM\u00ae DB2 Connect 9.5 Unlimited Edition for System z.\u003c/LI\u003e  \u003c/UL\u003e\u003c/p\u003e",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 pr\u00e9sente dans ITMA peut permettre \u00e0 un utilisateur\nlocal d\u0027\u00e9l\u00e9ver ses privil\u00e8ges. Cette vuln\u00e9rabilit\u00e9 n\u0027est pas pr\u00e9sente\ndans la version de DB2 pour Windows.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-4061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4061"
    }
  ],
  "initial_release_date": "2011-12-26T00:00:00",
  "last_revision_date": "2011-12-26T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 IBM swg21576372 du 22 d\u00e9cembre 2011 :",
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21576372"
    }
  ],
  "reference": "CERTA-2011-AVI-725",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-12-26T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "L\u0027agent \u00ab\u00a0IBM Tivoli Monitoring\u00a0\u00bb (ITMA) inclus dans \u00ab\u00a0IBM DB2\u00a0\u00bb\nversions 9.5 et 9.7 contient une vuln\u00e9rabilit\u00e9 permettant \u00e0 un\nutilisateur, local, malintentionn\u00e9 d\u0027\u00e9lever ses privil\u00e8ges.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans IBM DB2",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 d\u0027IBM n\u02da1576372 du 22 d\u00e9cembre 2011",
      "url": null
    }
  ]
}

CVE-2011-4061 (GCVE-0-2011-4061)

Vulnerability from cvelistv5

Published

2011-10-18 01:00

Modified

2024-08-06 23:53

Severity ?

CWE

Summary

Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.

References

URL

Tags

	http://www.securityfocus.com/archive/1/518659	mailing-list, x_refsource_BUGTRAQ
	http://www.nth-dimension.org.uk/downloads.php?id=83	x_refsource_MISC
	http://www.securityfocus.com/bid/51181	vdb-entry, x_refsource_BID
	http://www.securityfocus.com/bid/48514	vdb-entry, x_refsource_BID
	http://www.nth-dimension.org.uk/downloads.php?id=77	x_refsource_MISC
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063	vdb-entry, signature, x_refsource_OVAL
	http://securityreason.com/securityalert/8476	third-party-advisory, x_refsource_SREASON

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T23:53:32.677Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20110629 Breaking the links: Exploiting the linker",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/518659"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"
          },
          {
            "name": "51181",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/51181"
          },
          {
            "name": "48514",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/48514"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"
          },
          {
            "name": "oval:org.mitre.oval:def:14063",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"
          },
          {
            "name": "8476",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/8476"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-06-29T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-11T09:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20110629 Breaking the links: Exploiting the linker",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/518659"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"
        },
        {
          "name": "51181",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/51181"
        },
        {
          "name": "48514",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/48514"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"
        },
        {
          "name": "oval:org.mitre.oval:def:14063",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"
        },
        {
          "name": "8476",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/8476"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-4061",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20110629 Breaking the links: Exploiting the linker",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/518659"
            },
            {
              "name": "http://www.nth-dimension.org.uk/downloads.php?id=83",
              "refsource": "MISC",
              "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"
            },
            {
              "name": "51181",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/51181"
            },
            {
              "name": "48514",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/48514"
            },
            {
              "name": "http://www.nth-dimension.org.uk/downloads.php?id=77",
              "refsource": "MISC",
              "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"
            },
            {
              "name": "oval:org.mitre.oval:def:14063",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"
            },
            {
              "name": "8476",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/8476"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-4061",
    "datePublished": "2011-10-18T01:00:00",
    "dateReserved": "2011-10-15T00:00:00",
    "dateUpdated": "2024-08-06T23:53:32.677Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CERTA-2011-AVI-725

Vulnerability from certfr_avis

Description

Solution

CVE-2011-4061 (GCVE-0-2011-4061)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature