CVE-2010-0184
Last modified
CVE-2010-0184 is a vulnerability of currently unknown severity. The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) before 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.. EPSS estimates a 0.32% chance of exploitation in the next 30 days.
Description
The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) before 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Runtime Agent | <= 5.6.1 |
| Tibco | Runtime Agent | 5.4.0 |
| Tibco | Runtime Agent | 5.5.3 |
| Tibco | Runtime Agent | 5.5.4 |
| Tibco | Runtime Agent | 5.6 |
References
- http://secunia.com/advisories/38191Vendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
- http://www.vupen.com/english/advisories/2010/0128Vendor Advisory
- http://secunia.com/advisories/38191Vendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
- http://www.vupen.com/english/advisories/2010/0128Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-0184?
How severe is CVE-2010-0184?
How do I fix CVE-2010-0184?
Are you affected by CVE-2010-0184?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST