CVE-2019-0105

Vulnerability

CVE-2019-0105 is a permission issue (CWE-275) in the install routine of the Intel Data Center Manager SDK [1][2]. Affected versions are prior to 5.0.2 [1][2]. The installer fails to properly verify file permissions, enabling a local authenticated user to modify or replace files during installation, leading to privilege escalation.

Exploitation

An attacker must have local access to the system and be authenticated as a user [1][2]. The attack complexity is high, requiring precise timing or conditions during the install process [2]. The attacker must run a malicious process that intercepts or modifies the installer's file operations, for example by placing a crafted file in a location the installer trusts with insufficient permission checking.

Impact

Successful exploitation allows the attacker to escalate privileges, potentially gaining administrative or SYSTEM-level access on the affected system [1][2]. This could lead to full compromise of the host, including data modification, denial of service, or further propagation [2].

Mitigation

Intel released version 5.0.2 of the Data Center Manager SDK to address this vulnerability [1][2]. Users should update to 5.0.2 or later. No workarounds have been published. The CVE is not listed on the CISA Known Exploited Vulnerabilities Catalog [2].