IBM Inventory Scout < 2.2.0.19 Symlink Vulnerability

medium Nessus Plugin ID 73966

Synopsis

The remote host contains a program that could allow a user to delete or manipulate files without authorization.

Description

According to its self-reported version, the Inventory Scout install on the remote host is a version prior to 2.2.0.19. It, therefore, could allow a local user to delete arbitrary files or have Inventory Scout operations operate on arbitrary files using a symlink attack.

Solution

Upgrade to Inventory Scout 2.2.0.19 or later.

Alternatively, remove the setuid bit from the affected files using the following commands :

- chmod 555 /opt/IBMinvscout/bin/invscoutClient_VPD_Survey
- chmod 555 /opt/IBMinvscout/sbin/invscout_lsvpd

Note that this will disable functionality of these commands for all users except root.

See Also

https://aix.software.ibm.com/aix/efixes/security/invscout_advisory2.asc

http://www-01.ibm.com/support/docview.wss?uid=isg1IV11643

Plugin Details

Severity: Medium

ID: 73966

File Name: invscout_2_2_0_19.nasl

Version: 1.4

Type: remote

Family: Misc.

Published: 5/12/2014

Updated: 4/21/2023

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.5

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:L/AC:H/Au:N/C:N/I:C/A:N

Vulnerability Information

CPE: cpe:/a:ibm:invscout.rte

Required KB Items: Settings/ParanoidReport

Exploit Ease: No known exploits are available

Patch Publication Date: 12/13/2011

Vulnerability Publication Date: 12/13/2011

Reference Information

CVE: CVE-2011-1384

BID: 51059