What is the severity of CVE-2010-0184?

CVE-2010-0184 is rated as a high severity vulnerability due to the exposure of domain administrator credentials.

How do I fix CVE-2010-0184?

To fix CVE-2010-0184, update to TIBCO Runtime Agent version 5.6.2 or later, which addresses the weak permissions on domain properties files.

What components are affected by CVE-2010-0184?

The affected components of CVE-2010-0184 are the domainutility and domainutilitycmd in TIBCO Domain Utility.

Can local users exploit CVE-2010-0184?

Yes, local users can exploit CVE-2010-0184 to obtain domain administrator credentials due to weak permissions set on the domain properties files.

Which versions of TIBCO Runtime Agent are vulnerable to CVE-2010-0184?

TIBCO Runtime Agent versions before 5.6.2, including 5.4.0, 5.5.3, 5.5.4, and 5.6 are vulnerable to CVE-2010-0184.

Vulnerability/
CVE-2010-0184

high

7.2

CWE

264

14/1/2010

3/10/2022

7/8/2024

CVE-2010-0184

First published: Thu Jan 14 2010(Updated: )

The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) before 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Tibco Runtime Agent	<=5.6.1
Tibco Runtime Agent	=5.5.4
Tibco Runtime Agent	=5.5.3
Tibco Runtime Agent	=5.4.0
Tibco Runtime Agent	=5.6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0184?
CVE-2010-0184 is rated as a high severity vulnerability due to the exposure of domain administrator credentials.
How do I fix CVE-2010-0184?
To fix CVE-2010-0184, update to TIBCO Runtime Agent version 5.6.2 or later, which addresses the weak permissions on domain properties files.
What components are affected by CVE-2010-0184?
The affected components of CVE-2010-0184 are the domainutility and domainutilitycmd in TIBCO Domain Utility.
Can local users exploit CVE-2010-0184?
Yes, local users can exploit CVE-2010-0184 to obtain domain administrator credentials due to weak permissions set on the domain properties files.
Which versions of TIBCO Runtime Agent are vulnerable to CVE-2010-0184?
TIBCO Runtime Agent versions before 5.6.2, including 5.4.0, 5.5.3, 5.5.4, and 5.6 are vulnerable to CVE-2010-0184.

collector/nvd-historical
collector/nvd-index
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/references
agent/author
agent/tags
agent/description
agent/event
agent/source
vendor/tibco
canonical/tibco runtime agent
version/tibco runtime agent/5.6.1
version/tibco runtime agent/5.5.4
version/tibco runtime agent/5.5.3
version/tibco runtime agent/5.4.0
version/tibco runtime agent/5.6

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.