Lucene search
HistoryMar 20, 2013 - 2:55 p.m.
CVE-2012-5938
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via standard filesystem operations.
Affected configurations
Node
ibminfosphere_information_serverMatch8.1
ORibminfosphere_information_serverMatch8.5
ORibminfosphere_information_serverMatch8.7
ORibminfosphere_information_serverMatch9.1
conectivalinux
ORnovellunixware
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | infosphere_information_server | 8.1 | cpe:2.3:a:ibm:infosphere_information_server:8.1:*:*:*:*:*:*:* |
| ibm | infosphere_information_server | 8.5 | cpe:2.3:a:ibm:infosphere_information_server:8.5:*:*:*:*:*:*:* |
| ibm | infosphere_information_server | 8.7 | cpe:2.3:a:ibm:infosphere_information_server:8.7:*:*:*:*:*:*:* |
| ibm | infosphere_information_server | 9.1 | cpe:2.3:a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:* |
| conectiva | linux | * | cpe:2.3:o:conectiva:linux:*:*:*:*:*:*:*:* |
| novell | unixware | * | cpe:2.3:o:novell:unixware:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2012-5938
2013-03-20 14:55:04
prion
prion
Design/Logic Flaw
2013-03-20 14:55:00
cvelist
cvelist
CVE-2012-5938
2013-03-20 14:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2012-5938