2 matches found
Security Bulletin: Privilege escalation attacks possible due to improper file ownership/permissions in IBM InfoSphere Information Server (CVE-2012-5938).
Abstract Security Bulletin: Privilege escalation attacks possible due to improper file ownership/permissions in IBM InfoSphere Information Server CVE-2012-5938. Content Security Bulletin: Privilege escalation attacks possible due to improper file ownership/permissions in IBM InfoSphere Informatio...
CVE-2012-5938
The issue (CVE-2012-5938) affects IBM InfoSphere Information Server versions 8.1, 8.5, 8.7 and 9.1 on UNIX/Linux. During installation, files are created with insufficient permissions/ownership, allowing local users to bypass access restrictions via standard filesystem operations. The IBM Security...