CVE-2010-0184

The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) before 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:tibco:runtime_agent:*:*:*:*:*:*:*:*
cpe:2.3:a:tibco:runtime_agent:5.4.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:runtime_agent:5.5.3:*:*:*:*:*:*:*
cpe:2.3:a:tibco:runtime_agent:5.5.4:*:*:*:*:*:*:*
cpe:2.3:a:tibco:runtime_agent:5.6:*:*:*:*:*:*:*

History

21 Nov 2024, 01:11

Type Values Removed Values Added
References () http://secunia.com/advisories/38191 - Vendor Advisory () http://secunia.com/advisories/38191 - Vendor Advisory
References () http://www.securityfocus.com/bid/37805 - () http://www.securityfocus.com/bid/37805 -
References () http://www.tibco.com/mk/advisory.jsp - Vendor Advisory () http://www.tibco.com/mk/advisory.jsp - Vendor Advisory
References () http://www.tibco.com/multimedia/security_advisory_runtime_agent_20100113_tcm8-10392.txt - () http://www.tibco.com/multimedia/security_advisory_runtime_agent_20100113_tcm8-10392.txt -
References () http://www.vupen.com/english/advisories/2010/0128 - Vendor Advisory () http://www.vupen.com/english/advisories/2010/0128 - Vendor Advisory

Information

Published : 2010-01-14 19:30

Updated : 2024-11-21 01:11


NVD link : CVE-2010-0184

Mitre link : CVE-2010-0184

CVE.ORG link : CVE-2010-0184


JSON object : View

Products Affected

tibco

  • runtime_agent
CWE
CWE-264

Permissions, Privileges, and Access Controls