CVE-2013-5467

Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring (ITM) on UNIX allow local users to gain privileges via unspecified vectors.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg21675798	Vendor Advisory
http://www.securityfocus.com/bid/69436
https://exchange.xforce.ibmcloud.com/vulnerabilities/88370

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.0:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.1:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.2:::::::*
	cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.3:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.0:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.1:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.2:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.2.3:::::::*
	cpe:2.3:a:ibm:monitoring_server_\(ms\)_and_shared_libraries_\(ax\):6.3.0:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-08-29 09:55

Updated : 2023-12-10 11:31

NVD link : CVE-2013-5467

Mitre link : CVE-2013-5467

CVE.ORG link : CVE-2013-5467

JSON object : View

Products Affected

ibm

monitoring_server_\(ms\)_and_shared_libraries_\(ax\)
monitoring_agent_for_unix_logs

linux

linux_kernel

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2013-5467", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-08-29T09:55:07.117", "references": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675798", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www.securityfocus.com/bid/69436", "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88370", "source": "psirt@us.ibm.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring (ITM) on UNIX allow local users to gain privileges via unspecified vectors."}, {"lang": "es", "value": "Monitoring Agent for UNIX Logs 6.2.0 hasta FP03, 6.2.1 hasta FP04, 6.2.2 hasta FP09, y 6.2.3 hasta FP04 y Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 hasta FP03, 6.2.1 hasta FP04, 6.2.2 hasta FP08, 6.2.3 hasta FP01, y 6.3.0 hasta FP01 en IBM Tivoli Monitoring (ITM) en UNIX permiten a usuarios locales ganar privilegios a trav\u00e9s de vectores no especificados."}], "lastModified": "2017-08-29T01:33:48.653", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E9E4090-901F-4849-AA8A-0C76F30D9697"}, {"criteria": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFF90B12-8A65-4093-BAF8-FC19449473F9"}, {"criteria": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD0B9B09-C570-4DE6-BE7A-A605E6ACA6D9"}, {"criteria": "cpe:2.3:a:ibm:monitoring_agent_for_unix_logs:6.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEF42AAF-6E26-42C1-86B1-EE86CE364870"}, {"criteria": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6238C743-F333-495A-9BE8-7694C6F0E49A"}, {"criteria": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98318D52-F1BC-433F-A04B-64BA03785E86"}, {"criteria": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E5094D5-E395-443F-9B46-5E179EAF13B6"}, {"criteria": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEE7EA89-CB3C-4E66-8CFC-D1E81BD42157"}, {"criteria": "cpe:2.3:a:ibm:monitoring_server_\\(ms\\)_and_shared_libraries_\\(ax\\):6.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C72C2CD7-1C4A-471D-BCF5-7BAEA9B4005C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@us.ibm.com"}