Vulnerability in Conectiva Linux

CVE-2012-5938

The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via sta…

EPSS: 0.004 (31.0th percentile) — read the EPSS interpretation.

Affected products

Conectiva Linux
Ibm Infosphere_information_server — versions 8.1, 8.5, 8.7
Novell Unixware
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

psirt@us.ibm.com (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM)