IBM AIX HACMP File Permission Bug Lets Local Users Modify Temporary Files
|
|
SecurityTracker Alert ID: 1019482 |
|
SecurityTracker URL: http://securitytracker.com/id/1019482
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Feb 22 2008
|
Impact:
Modification of user information
|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes
|
Version(s): 5.1; HACMP 5.4 PTF2
|
Description:
A vulnerability was reported in IBM AIX's High Availability Cluster Multi-Processing environment. A local user can modify certain temporary files on the target system.
The system creates temporary files '/tmp/run_clappmond.err.<monitor_id>' with unsafe permissions. Any user can modify the files.
[Editor's note: The vendor did not indicate whether a symlink privilege escalation attack is possible or not.]
|
Impact:
A local user can modify certain temporary files on the target system.
|
Solution:
The vendor has issued a fix (IZ11121 and IZ15917).
The IBM advisories are available at:
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ11121
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ15917
|
Vendor URL: www.ibm.com/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 21 Feb 2008 22:18:36 -0500
Subject: IBM AIX High Availability Cluster Multi-Processing (HACMP)
|
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ11121
http://www-1.ibm.com/support/docview.wss?uid=isg1IZ15917
|
|
