First published: Wed Sep 25 2013(Updated: )
The RemoteClient component in IBM Rational ClearCase 8.0.0.03 through 8.0.0.07, and 8.0.1, uses world-writable permissions for the rcleartool script, which allows local users to gain privileges by appending commands.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Rational ClearCase | =8.0.0.3 | |
IBM Rational ClearCase | =8.0.0.4 | |
IBM Rational ClearCase | =8.0.0.5 | |
IBM Rational ClearCase | =8.0.0.6 | |
IBM Rational ClearCase | =8.0.0.7 | |
IBM Rational ClearCase | =8.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.