Vulnerability Details : CVE-2010-4121
The TCP-to-ODBC gateway in IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.3 does not require authentication for SQL statements, which allows remote attackers to modify, create, or read database records via a session on TCP port 2020. NOTE: the vendor disputes this issue, stating that the "default Microsoft Access database is not password protected because it is intended to be used for evaluation purposes only.
Vulnerability category: BypassGain privilege
Exploit prediction scoring system (EPSS) score for CVE-2010-4121
Probability of exploitation activity in the next 30 days: 0.31%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 69 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-4121
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2010-4121
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-4121
-
http://www.zerodayinitiative.com/advisories/ZDI-10-194
ZDI-10-194 | Zero Day Initiative
-
http://securitytracker.com/id?1024539
IBM Tivoli Provisioning Manager for OS Deployment Input Validation Flaw in ODBC Gateway Lets Remote Users Inject SQL Commands - SecurityTracker
-
http://publib.boulder.ibm.com/infocenter/tivihelp/v3r1/index.jsp?topic=%2Fcom.ibm.tivoli.tpm.osd.doc%2Finstall%2Ftosd_setmsacessdbpwd.html
IBM Tivoli Provisioning Manager for OS Deployment Version 7.1.1.16 documentation
Products affected by CVE-2010-4121
- cpe:2.3:a:ibm:tivoli_provisioning_manager_os_deployment:7.1.1.3:*:*:*:*:*:*:*