Vulnerabilities > CVE-2011-4061 - Unspecified vulnerability in IBM DB2 and Tivoli Monitoring for Databases
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ibm
nessus
Summary
Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Nessus
NASL family | Databases |
NASL id | DB2_97FP6.NASL |
description | According to its version, the installation of DB2 9.7 running on the remote host is prior to Fix Pack 6. It is, therefore, affected by multiple vulnerabilities : - A local user can exploit a vulnerability in the bundled IBM Tivoli Monitoring Agent (ITMA) to escalate their privileges. (CVE-2011-4061) - An authorized user with |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 59904 |
published | 2012-07-10 |
reporter | This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/59904 |
title | IBM DB2 9.7 < Fix Pack 6 Multiple Vulnerabilities |
code |
|
Oval
accepted | 2013-07-29T04:00:07.792-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header. | ||||||||
family | windows | ||||||||
id | oval:org.mitre.oval:def:14063 | ||||||||
status | accepted | ||||||||
submitted | 2011-12-16T09:52:00.000-05:00 | ||||||||
title | Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header. | ||||||||
version | 7 |
Seebug
bulletinFamily | exploit |
description | Bugtraq ID: 51181 CVE ID:CVE-2011-4061 IBM DB2 Universal Database Server是一款大型的商业关系数据库系统 IBM DB2/IBM DB2 Connect存在安全漏洞,允许恶意本地用户提升特权 Tivoli监视代理(ITMA)绑定的SUID "tmaitm6/lx8266/bin/kbbacf1"可执行文件不安全使用DT_RPATH来装载libkbb.so库,本地攻击者可以利用此漏洞诱使目标用户在特制库所在目录运行应用程序,可装载任意库提升权限 0 DB2 Connect 9.x IBM DB2 9.x 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息: http://www.ibm.com/support/docview.wss?uid=swg21576372 |
id | SSV:26133 |
last seen | 2017-11-19 |
modified | 2011-12-30 |
published | 2011-12-30 |
reporter | Root |
title | IBM DB2 / DB2 Connect Tivoli监视代理DT_RPATH特权提升漏洞 |
References
- http://securityreason.com/securityalert/8476
- http://www.nth-dimension.org.uk/downloads.php?id=77
- http://www.nth-dimension.org.uk/downloads.php?id=83
- http://www.securityfocus.com/archive/1/518659
- http://www.securityfocus.com/bid/48514
- http://www.securityfocus.com/bid/51181
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063
- http://securityreason.com/securityalert/8476
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063
- http://www.securityfocus.com/bid/51181
- http://www.securityfocus.com/bid/48514
- http://www.securityfocus.com/archive/1/518659
- http://www.nth-dimension.org.uk/downloads.php?id=83
- http://www.nth-dimension.org.uk/downloads.php?id=77