Micromuse Netcool/Neusecure NS帐户密码泄露漏洞

admin

0
文章

0
评论

2023-12-15 02:09:53 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

Micromuse Netcool/Neusecure NS帐户密码泄露漏洞

CVE编号

CVE-2006-0837

利用情况

暂无

补丁情况

N/A

披露时间

2006-02-22

漏洞描述

IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 has world-readable permissions for (1) /etc/neusecure.conf, (2) /opt/NeuSecure/etc/cms-3.0.236.buildconf, and (3) /opt/NeuSecure/bin/ns_archiver.log, which allows local users to read sensitive information such as passwords. NOTE: IBM has privately confirmed to CVE that a fix is available for these issues.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0364.html
http://secunia.com/advisories/18922
http://securitytracker.com/id?1015642
http://www.osvdb.org/23270
http://www.osvdb.org/23271
http://www.osvdb.org/23914
http://www.securityfocus.com/archive/1/425304/100/0/threaded
http://www.securityfocus.com/bid/16693
http://www.securityfocus.com/bid/16700
https://exchange.xforce.ibmcloud.com/vulnerabilities/24785