CVE-2011-4061 - Vulnerability Details - OpenCVE

Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Db2 Tivoli Monitoring For Databases

Configuration 1 [-]

OR	cpe:2.3:a:ibm:db2:9.7::express:::::
	cpe:2.3:a:ibm:tivoli_monitoring_for_databases::::::::

No data.

References

Link	Providers
http://securityreason.com/securityalert/8476
http://www.nth-dimension.org.uk/downloads.php?id=77
http://www.nth-dimension.org.uk/downloads.php?id=83
http://www.securityfocus.com/archive/1/518659
http://www.securityfocus.com/bid/48514
http://www.securityfocus.com/bid/51181
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-10-18T01:00:00

Updated: 2024-08-06T23:53:32.677Z

Reserved: 2011-10-15T00:00:00

Link: CVE-2011-4061

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-10-18T01:55:01.327

Modified: 2024-11-21T01:31:46.637

Link: CVE-2011-4061

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-06-29T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T09:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20110629 Breaking the links: Exploiting the linker", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/518659"}, {"tags": ["x_refsource_MISC"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"}, {"name": "51181", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/51181"}, {"name": "48514", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/48514"}, {"tags": ["x_refsource_MISC"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"}, {"name": "oval:org.mitre.oval:def:14063", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"}, {"name": "8476", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/8476"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-4061", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20110629 Breaking the links: Exploiting the linker", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/518659"}, {"name": "http://www.nth-dimension.org.uk/downloads.php?id=83", "refsource": "MISC", "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"}, {"name": "51181", "refsource": "BID", "url": "http://www.securityfocus.com/bid/51181"}, {"name": "48514", "refsource": "BID", "url": "http://www.securityfocus.com/bid/48514"}, {"name": "http://www.nth-dimension.org.uk/downloads.php?id=77", "refsource": "MISC", "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"}, {"name": "oval:org.mitre.oval:def:14063", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"}, {"name": "8476", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/8476"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T23:53:32.677Z"}, "title": "CVE Program Container", "references": [{"name": "20110629 Breaking the links: Exploiting the linker", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/518659"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"}, {"name": "51181", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/51181"}, {"name": "48514", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/48514"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"}, {"name": "oval:org.mitre.oval:def:14063", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"}, {"name": "8476", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/8476"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-4061", "datePublished": "2011-10-18T01:00:00", "dateReserved": "2011-10-15T00:00:00", "dateUpdated": "2024-08-06T23:53:32.677Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:db2:9.7:*:express:*:*:*:*:*", "matchCriteriaId": "825AE914-20DA-4CC2-B792-04DFC96D0472", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_monitoring_for_databases:*:*:*:*:*:*:*:*", "matchCriteriaId": "D79CEAF3-227B-47E4-B464-E646BEA7DFC2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de b\u00fasqueda no confiable en (1) db2rspgn y (2) kbbacf1 en IBM DB2 Express Edition v9.7, que se utiliza en el IBM Tivoli Monitoring para bases de datos: El agente de DB2, permite a usuarios locales conseguir privilegios a trav\u00e9s de un caballo de Troya libkbb.so en el directorio de trabajo actual, en relaci\u00f3n con la cabecera ELF DT_RPATH."}], "evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/426.html\r\n'CWE-426: Untrusted Search Path'", "id": "CVE-2011-4061", "lastModified": "2024-11-21T01:31:46.637", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-10-18T01:55:01.327", "references": [{"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/8476"}, {"source": "cve@mitre.org", "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/518659"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/48514"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/51181"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/8476"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.nth-dimension.org.uk/downloads.php?id=77"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.nth-dimension.org.uk/downloads.php?id=83"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/518659"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/48514"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/51181"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}