IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and 4.2.0 before 4.2.0.4 iFix003 uses default file permissions of 0664, which allows local users to obtain sensitive information via standard filesystem operations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sterling_connect:direct | Ibm | 4.1.0.0 (including) | 4.1.0.0 (including) |
Sterling_connect:direct | Ibm | 4.1.0.1 (including) | 4.1.0.1 (including) |
Sterling_connect:direct | Ibm | 4.1.0.2 (including) | 4.1.0.2 (including) |
Sterling_connect:direct | Ibm | 4.1.0.3 (including) | 4.1.0.3 (including) |
Sterling_connect:direct | Ibm | 4.1.0.4 (including) | 4.1.0.4 (including) |
Sterling_connect:direct | Ibm | 4.2.0.0 (including) | 4.2.0.0 (including) |
Sterling_connect:direct | Ibm | 4.2.0.1 (including) | 4.2.0.1 (including) |
Sterling_connect:direct | Ibm | 4.2.0.2 (including) | 4.2.0.2 (including) |
Sterling_connect:direct | Ibm | 4.2.0.3 (including) | 4.2.0.3 (including) |
Sterling_connect:direct | Ibm | 4.2.0.4 (including) | 4.2.0.4 (including) |