CVE-2013-5364
Last modified
CVE-2013-5364 is a vulnerability of currently unknown severity. Secunia CSI Agent 6.0.0.15017 and earlier, 6.0.1.1007 and earlier, and 7.0.0.21 and earlier, when running on Red Hat Linux, uses world-readable and world-writable permissions for /etc/csia_config.xml, which allows local users to change CSI Agent configuration by modifying this file.. EPSS estimates a 0.41% chance of exploitation in the next 30 days.
Description
Secunia CSI Agent 6.0.0.15017 and earlier, 6.0.1.1007 and earlier, and 7.0.0.21 and earlier, when running on Red Hat Linux, uses world-readable and world-writable permissions for /etc/csia_config.xml, which allows local users to change CSI Agent configuration by modifying this file.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Secunia | Csi Agent | >= 6.0.0, <= 6.0.0.15017 |
| Secunia | Csi Agent | >= 6.0.1, <= 6.0.1.1007 |
| Secunia | Csi Agent | >= 7.0.0, <= 7.0.0.21 |
References
- http://osvdb.org/101901Broken Link
- http://secunia.com/advisories/56380Third Party Advisory
- http://secunia.com/vulnerability_scanning/corporate/release-history/Third Party Advisory
- http://www.securityfocus.com/bid/64775Third Party Advisory, VDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90230Third Party Advisory, VDB Entry
- http://osvdb.org/101901Broken Link
- http://secunia.com/advisories/56380Third Party Advisory
- http://secunia.com/vulnerability_scanning/corporate/release-history/Third Party Advisory
- http://www.securityfocus.com/bid/64775Third Party Advisory, VDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90230Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-5364?
How severe is CVE-2013-5364?
How do I fix CVE-2013-5364?
Are you affected by CVE-2013-5364?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST