Improper File Restriction in IBM Tivoli Security Directory Server
CVE-2015-1959

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Directory Server
Vendor: CVE Published:; 28 June 2015

Summary

The IBM Tivoli Security Directory Server suffers from improper file restrictions that fail to adequately secure sensitive encrypted files. This vulnerability permits local users to exploit the system through unauthorized download or upload actions, potentially leading to unauthorized access to confidential information and exposing the system to various risks. It is crucial for organizations utilizing affected versions of this software to apply necessary updates to ensure their data security.

References

http://www.securitytracker.com/id/1032734

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21960659

x_refsource_CONFIRM

http://www.securityfocus.com/bid/75442

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 28, 2015
Vulnerability Reserved
Feb 19, 2015