CVE-2016-0394 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-0394

CWE

https://cwe.mitre.org/data/definitions/275.html

IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could allow a local attacker to manipulate certain files.

Affected Software

Name	Vendor	Start Version	End Version
Integration_bus	Ibm	9.0 (including)	9.0 (including)
Integration_bus	Ibm	9.0.0.1 (including)	9.0.0.1 (including)
Integration_bus	Ibm	9.0.0.2 (including)	9.0.0.2 (including)
Integration_bus	Ibm	10.0 (including)	10.0 (including)
Websphere_message_broker	Ibm	8.0 (including)	8.0 (including)
Websphere_message_broker	Ibm	8.0.0.1 (including)	8.0.0.1 (including)
Websphere_message_broker	Ibm	8.0.0.2 (including)	8.0.0.2 (including)
Websphere_message_broker	Ibm	8.0.0.3 (including)	8.0.0.3 (including)
Websphere_message_broker	Ibm	8.0.0.4 (including)	8.0.0.4 (including)
Websphere_message_broker	Ibm	8.0.0.5 (including)	8.0.0.5 (including)

References

http://www.ibm.com/support/docview.wss?uid=swg21985013
http://www.securityfocus.com/bid/94577