Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 14/01/2010 Updated: 08/08/2011

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) prior to 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tibco runtime agent 5.5.3
tibco runtime agent 5.6
tibco runtime agent 5.5.4
tibco runtime agent 5.4.0
tibco runtime agent

CWE-264 http://www.securityfocus.com/bid/37805 http://www.vupen.com/english/advisories/2010/0128 http://www.tibco.com/mk/advisory.jsp http://secunia.com/advisories/38191 http://www.tibco.com/multimedia/security_advisory_runtime_agent_20100113_tcm8-10392.txt https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-0184

Vulnerability Summary

References

Vulmon Search

About

Products

Connect