PowerEdge: iDRAC Service Module Improper File Permission Vulnerability
Summary: Dell EMC guidance to mitigate risk and resolution for the Improper File Permission Vulnerability (CVE-2018-11053) for iDRAC Service Module version 3.0.1, 3.0.2, 3.1.0 and 3.2.0. For step-by-step procedures to resolve this vulnerability, see this guide. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
CVE Identifier: CVE-2018-11053
Severity: Medium
Affected products: Dell EMC iDRAC Service Module 3.0.1, 3.0.2, 3.1.0, 3.2.0 (for all supported Linux and XenServer operating systems)
Summary:
Dell EMC iDRAC Service Module (iSM) has been updated to fix an improper file permission vulnerability that could potentially be exploited by malicious host operating system users or processes to compromise the affected system.
Details:
Dell EMC iDRAC Service Module for all supported Linux and XenServer versions 3.0.1, 3.0.2, 3.1.0, 3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. A malicious low-privileged operating system user or process could modify the host file and potentially redirect traffic from the intended destination to sites hosting malicious or unwanted content.
Note: iDRAC Service Module for Windows or VMware ESXi is not affected by this issue.
If the
/etc/hosts file permissions are changed after patch upgrade they will be changed back to Linux default read-only permissions at each iSM service start regardless if the permissions were intentionally changed later.
The following Dell EMC iDRAC Service Module releases contain resolution to this vulnerability:
- Dell EMC iDRAC Service Module 3.2.0.1 (for all supported Linux and XenServer operating systems)
- Dell EMC iDRAC Service Module 3.1.0.1 (for all supported Linux and XenServer operating systems)
Dell Technologies recommends upgrading at the earliest opportunity. Downloads for the applicable operating system are below:
Security patch for iSM 3.2.0
- iSM 3.2.0.1 RPM packages for RHEL 6, RHEL 7, CentOS 6, CentOS 7, SLES 11, and SLES 12
- iSM 3.2.0.1 DUP package for RHEL 6, RHEL 7, CentOS 6, CentOS 7, SLES 11, and SLES 12
- iSM 3.2.0.1 ISO image for XenServer 7
Security patch for iSM 3.1.0
- iSM 3.1.0.1 RPM packages for RHEL 6, RHEL 7, CentOS 6, CentOS 7, SLES 11, and SLES 12
- iSM 3.1.0.1 ISO image for XenServer 7
Dell Technologies recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided "as is" without warranty of any kind. Dell EMC disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title, and non-infringement. In no event, shall Dell EMC or its suppliers, be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Dell EMC or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.
Affected Products
iDRAC Service Module 3.x, SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12, Red Hat Enterprise Linux Version 6, Red Hat Enterprise Linux Version 7Products
Poweredge C4140, PowerEdge c6320, PowerEdge C6420, PowerEdge FC640, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge MX5016s, PowerEdge MX740C
, PowerEdge MX840C, PowerEdge R230, PowerEdge R240, PowerEdge R330, PowerEdge R340, PowerEdge R430, PowerEdge R440, PowerEdge R530, PowerEdge R530xd, PowerEdge R540, PowerEdge R630, PowerEdge R640, PowerEdge R6415, PowerEdge R730, PowerEdge R730xd, PowerEdge R740, PowerEdge R740XD, PowerEdge R740XD2, PowerEdge R7415, PowerEdge R7425, PowerEdge R830, PowerEdge R840, PowerEdge R930, PowerEdge R940, PowerEdge R940xa, PowerEdge T140, PowerEdge T330, PowerEdge T340, PowerEdge T430, PowerEdge T440, PowerEdge T630, PowerEdge T640
...
Article Properties
Article Number: 000176891
Article Type: How To
Last Modified: 31 Dec 2024
Version: 7
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.