IBM Support

IZ12735: SECURITY: LOCAL EXPLOITATION OF A FILE CREATION VULNERABILITY IN THE ADMIN SERVER ALLOWS ATTACKERS TO ELEVATE PRIVILEGES TO ROOT

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • As part of the initialization, the files "dasRecoveryIndex",
    "dasRecoveryIndex.tmp",
    ".dasRecoveryIndex.lock", and "dasRecoveryIndex.cor" are
    created with full root privileges. By removing and re-creating
    these files as symbolic links, an attacker can create arbitrary
    files as root.
    

Local fix

  • There is no local fix available.
    

Problem summary

  • SECURITY: LOCAL EXPLOITATION OF A FILE CREATION VULNERABILITY IN
    THE ADMIN SERVER ALLOWS ATTACKERS TO ELEVATE PRIVILEGES TO ROOT
    

Problem conclusion

  • As part of the initialization, the files "dasRecoveryIndex",
    "dasRecoveryIndex.tmp",
    ".dasRecoveryIndex.lock", and "dasRecoveryIndex.cor" are
    created with full root privileges. By removing and re-creating
    these files as symbolic links, an attacker can create arbitrary
    files as root.
    

Temporary fix

  • N/A
    

Comments

APAR Information

  • APAR number

    IZ12735

  • Reported component name

    DB2 UDB ESE AIX

  • Reported component ID

    5765F4100

  • Reported release

    910

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    YesHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2008-01-10

  • Closed date

    2008-06-23

  • Last modified date

    2008-06-23

  • APAR is sysrouted FROM one or more of the following:

    IZ07125

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    DB2 UDB ESE AIX

  • Fixed component ID

    5765F4100

Applicable component levels

[{"Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Product":{"code":"SSEPGG","label":"DB2 for Linux- UNIX and Windows"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"910"}]

Document Information

Modified date:
04 October 2021