CVE-2018-11053: iSM: Dell EMC iDRAC Service Module Improper File Permission Vulnerability
First published: Tue Jun 26 2018(Updated: )
Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. A malicious low privileged operating system user or process could modify the host file and potentially redirect traffic from the intended destination to sites hosting malicious or unwanted content.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC iDRAC Service Module | =3.0.1 | |
| Dell EMC iDRAC Service Module | =3.0.2 | |
| Dell EMC iDRAC Service Module | =3.1.0 | |
| Dell EMC iDRAC Service Module | =3.2.0 | |
| Citrix XenServer | =7.1 | |
| Redhat Enterprise Linux | =6.9 | |
| Redhat Enterprise Linux | =7.4 | |
| SUSE SUSE Linux Enterprise Server | =11-sp4 | |
| SUSE SUSE Linux Enterprise Server | =12-sp3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-11053?
CVE-2018-11053 is a vulnerability in the Dell EMC iDRAC Service Module for Linux and XenServer that allows a low privileged user to change the default file permissions of the hosts file to world writable.
Which versions of Dell EMC iDRAC Service Module are affected?
The affected versions of Dell EMC iDRAC Service Module are v3.0.1, v3.0.2, v3.1.0, and v3.2.0.
What is the severity of CVE-2018-11053?
The severity of CVE-2018-11053 is medium (6.5).
How can a malicious user exploit this vulnerability?
A malicious low privileged user or process can exploit this vulnerability to modify the hosts file and potentially gain unauthorized access to the host operating system.
Are Citrix XenServer and Redhat Enterprise Linux affected by CVE-2018-11053?
No, Citrix XenServer and Redhat Enterprise Linux are not affected by CVE-2018-11053.
- agent/references
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/weakness
- agent/remedy
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/last-modified-date
- agent/tags
- agent/event
- agent/first-publish-date
- vendor/dell
- canonical/dell emc idrac service module
- version/dell emc idrac service module/3.0.1
- version/dell emc idrac service module/3.0.2
- version/dell emc idrac service module/3.1.0
- version/dell emc idrac service module/3.2.0
- vendor/citrix
- canonical/citrix xenserver
- version/citrix xenserver/7.1
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/6.9
- version/redhat enterprise linux/7.4
- vendor/suse
- canonical/suse suse linux enterprise server
- version/suse suse linux enterprise server/11-sp4
- version/suse suse linux enterprise server/12-sp3