Home Unlabelled Security Bulletin: Incorrect permissions on CIT files in IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments (CVE-2018-2025)

Security Bulletin: Incorrect permissions on CIT files in IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments (CVE-2018-2025)

By
Friday, November 22, 2019
Read
Add Comment

The IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client creates directories/files in the CIT directory that have insecure permissions.

Affected product(s) and affected version(s):

Affected Product(s)Version(s)
IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client8.1.0.0-8.1.8.0            
7.1.0.0-7.1.8.5
IBM Spectrum Protect (formerly Tivoli Storage Manager) for Virtual Environments:
Data Protection for VMware		8.1.0.0-8.1.8.0
7.1.0.0-7.1.8.5
IBM Spectrum Protect (formerly Tivoli Storage Manager) for Virtual Environments:
Data Protection for Hyper-V		8.1.0.0-8.1.8.0
7.1.0.0-7.1.8.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1107261

The post Security Bulletin: Incorrect permissions on CIT files in IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments (CVE-2018-2025) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2KLCrJk
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us