IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and 4.2.0 before 4.2.0.4 iFix003 uses default file permissions of 0664, which allows local users to obtain sensitive information via standard filesystem operations.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg1IT14769 | Patch Vendor Advisory |
http://www-01.ibm.com/support/docview.wss?uid=swg21988278 | Mitigation Patch Vendor Advisory |
http://www.securityfocus.com/bid/92336 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2016-08-08T01:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2015-12-08T00:00:00
Link: CVE-2016-0380
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-08-08T01:59:05.633
Modified: 2020-06-25T19:42:45.090
Link: CVE-2016-0380
JSON object: View
Redhat Information
No data.
CWE