Secunia CSI Agent 6.0.0.15017 and earlier, 6.0.1.1007 and earlier, and 7.0.0.21 and earlier, when running on Red Hat Linux, uses world-readable and world-writable permissions for /etc/csia_config.xml, which allows local users to change CSI Agent configuration by modifying this file.
References
| Link | Resource |
|---|---|
| http://osvdb.org/101901 | Broken Link |
| http://secunia.com/advisories/56380 | Third Party Advisory |
| http://secunia.com/vulnerability_scanning/corporate/release-history/ | Third Party Advisory |
| http://www.securityfocus.com/bid/64775 | Third Party Advisory VDB Entry |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/90230 | Third Party Advisory VDB Entry |
| http://osvdb.org/101901 | Broken Link |
| http://secunia.com/advisories/56380 | Third Party Advisory |
| http://secunia.com/vulnerability_scanning/corporate/release-history/ | Third Party Advisory |
| http://www.securityfocus.com/bid/64775 | Third Party Advisory VDB Entry |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/90230 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Nov 2024, 01:57
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://osvdb.org/101901 - Broken Link | |
| References | () http://secunia.com/advisories/56380 - Third Party Advisory | |
| References | () http://secunia.com/vulnerability_scanning/corporate/release-history/ - Third Party Advisory | |
| References | () http://www.securityfocus.com/bid/64775 - Third Party Advisory, VDB Entry | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/90230 - Third Party Advisory, VDB Entry |
Information
Published : 2014-01-26 01:55
Updated : 2024-11-21 01:57
NVD link : CVE-2013-5364
Mitre link : CVE-2013-5364
CVE.ORG link : CVE-2013-5364
JSON object : View
Products Affected
secunia
- csi_agent
redhat
- enterprise_linux
CWE
CWE-264
Permissions, Privileges, and Access Controls