CVE-2013-5364 Information

Description

Secunia CSI Agent 6.0.0.15017 and earlier 6.0.1.1007 and earlier and 7.0.0.21 and earlier when running on Red Hat Linux uses world-readable and world-writable permissions for /etc/csia_config.xml which allows local users to change CSI Agent configuration by modifying this file.

Reference

http://osvdb.org/101901 http://secunia.com/advisories/56380 http://secunia.com/vulnerability_scanning/corporate/release-history/ http://www.securityfocus.com/bid/64775 https://exchange.xforce.ibmcloud.com/vulnerabilities/90230