Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2591

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2014-2591
Last Modified 24 Jun 2014 02:45:45
Published 13 May 2014 08:55:08
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2014-2591

Summary

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting.

Vulnerable Systems

Application

  • Bmc Patrol Agent

  • Bmc Patrol Agent 3.9.00


References

MISC - https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2591/

FULLDISC - 20140414 CVE-2014-2591 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in BMC Patrol for AIX


Last Updated: 27 May 2016 11:05:38