CVE-2011-3123
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IBM InfoSphere Information Server 8.5 and 8.5.0.1 on Unix and Linux, as used in IBM InfoSphere DataStage 8.5 and 8.5.0.1 and other products, uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
IBM InfoSphere Information Server v8.5 y v8.5.0.1 de Unix y Linux, como los utilizados en IBM InfoSphere DataStage v8.5 y v8.5.0.1 y otros productos, utiliza permisos débiles para los archivos especificados, lo que permite a usuarios locales conseguir privilegios a través de vectores desconocidos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-08-10 CVE Reserved
- 2011-08-10 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.ibm.com/support/docview.wss?uid=swg21504279 | X_refsource_confirm | |
| http://www.ibm.com/support/docview.wss?uid=swg24030333 | X_refsource_confirm | |
| http://www.securityfocus.com/bid/48516 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/45036 | 2012-06-15 | |
| http://www-01.ibm.com/support/docview.wss?uid=swg1JR39769 | 2012-06-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Infosphere Datastage Search vendor "Ibm" for product "Infosphere Datastage" | 8.5 Search vendor "Ibm" for product "Infosphere Datastage" and version "8.5" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|
| Ibm Search vendor "Ibm" | Infosphere Datastage Search vendor "Ibm" for product "Infosphere Datastage" | 8.5.0.1 Search vendor "Ibm" for product "Infosphere Datastage" and version "8.5.0.1" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|
| Ibm Search vendor "Ibm" | Infosphere Information Server Search vendor "Ibm" for product "Infosphere Information Server" | 8.5 Search vendor "Ibm" for product "Infosphere Information Server" and version "8.5" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|
| Ibm Search vendor "Ibm" | Infosphere Information Server Search vendor "Ibm" for product "Infosphere Information Server" | 8.5.0.1 Search vendor "Ibm" for product "Infosphere Information Server" and version "8.5.0.1" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | * | - |
Safe
|