Security Bulletin
Summary
Privilege escalation vulnerability in an IBM Tivoli Monitoring (ITM) agent could be exploited by a local user to gain elevated privilege of another user. This vulnerability also affects a shared library shipped with all ITM components and agents.
Vulnerability Details
CVEID: CVE-2013-5467
Description: Privilege escalation vulnerability could be exploited by a local user to gain elevated privilege of another user.
CVSS Base Score: 6.9
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/88370 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Affected Products and Versions
Monitoring Agent for UNIX Logs version 6.2.3 through 6.2.3 Fix Pack 04
Monitoring Agent for UNIX Logs version 6.2.2 through 6.2.2 Fix Pack 09
Monitoring Agent for UNIX Logsversion 6.2.1 through 6.2.1 Fix Pack 04
Monitoring Agent for UNIX Logs version 6.2.0 through 6.2.0 Fix Pack 03
Monitoring Agent for UNIX Logs is not shipped as part of ITM 6.30
Utility shipped as part of the monitoring server and a binary shipped as part of the Shared Libraries included with all IBM Tivoli Monitoring components and agents. These are affected only on UNIX and Linux:
Monitoring Server (ms) and Shared Libraries (ax) version 6.3.0 through 6.3.0 Fix Pack 01
Monitoring Server (ms) and Shared Libraries (ax) version 6.2.3 through 6.2.3 Fix Pack 01
Monitoring Server (ms) and Shared Libraries (ax) version 6.2.2 through 6.2.2 Fix Pack 08
Monitoring Server (ms) and Shared Libraries (ax) version 6.2.1 through 6.2.1 Fix Pack 04
Monitoring Server (ms) and Shared Libraries (ax) version 6.2.0 through 6.2.0 Fix Pack 03
Remediation/Fixes
The following fixes are for the Monitoring Agent for UNIX Logs:
|
Fix | VRMF | How to acquire fix |
| N/A | 6.3.0 | Does not ship in 6.3.0. |
| 6.2.3-TIV-ITM_FP0005 | 6.2.3 | http://www.ibm.com/support/docview.wss?uid=swg24035801 |
| 6.2.2.9-TIV-ITM_UXLOG-IF0002 | 6.2.2 | http://www.ibm.com/support/docview.wss?uid=swg24037225 |
The following fixes are for the utility shipped as part of the monitoring server and the shared library included with all ITM components and agents on UNIX and Linux.
| Fix | VRMF | How to acquire fix |
| 6.3.0-TIV-ITM-FP0002 | 6.3.0 | http://www.ibm.com/support/docview.wss?uid=swg24035402 |
| 6.2.3-TIV-ITM-FP0002 | 6.2.3 | http://www.ibm.com/support/docview.wss?uid=swg24032429 |
| 6.2.2-TIV-ITM_FP0009 | 6.2.2 | http://www.ibm.com/support/docview.wss?uid=swg24032067 |
The technote Upgrading Shared Components for IBM Tivoli Monitoring Agents provides instructions on updating the IBM Tivoli Monitoring Shared Libraries for agents not included in the Fix Packs above.
Workarounds and Mitigations
Contact IBM Support for options.
Get Notified about Future Security Bulletins
References
Change History
26 August 2014 Original Copy Published.
*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.
*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.
Disclaimer
Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.
Internal Use Only
Advisory 1231
IBM20131015-1556-42
DB Record 30573
CVE-2013-5467
Product Synonym
ITM
Was this topic helpful?
Document Information
Modified date:
17 June 2018
UID
swg21675798