Home Unlabelled IBM Security Bulletin: Password Disclosure via application tracing in IBM Tivoli Storage Manager HSM for Windows (CVE-2016-5918)

IBM Security Bulletin: Password Disclosure via application tracing in IBM Tivoli Storage Manager HSM for Windows (CVE-2016-5918)

By
Thursday, August 18, 2016
Read
Add Comment

IBM Tivoli Storage Manager HSM for Windows (IBM Spectrum Protect HSM for Windows) may display the encrypted Tivoli Storage Manager password when application tracing is enabled.

CVE(s): CVE-2016-5918

Affected product(s) and affected version(s):

The following levels of IBM Tivoli Storage Manager HSM for Windows (IBM Spectrum Protect HSM for Windows) are affected:

  • 7.1.0.0 through 7.1.4.1
  • 6.4.0.0 through 6.4.3.0
  • 6.3 and below – all levels

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2bl3tDQ
X-Force Database: http://ift.tt/2b1FG0N



from IBM Product Security Incident Response Team http://ift.tt/2bl4jk2
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us