Insecure Permissions in IBM WebSphere Application Server Installer

Insecure Permissions in IBM WebSphere Application Server Installer

CVE-2011-1307 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The installer in IBM WebSphere Application Server (WAS) before 7.0.0.15 uses 777 permissions for a temporary log directory, which allows local users to have unintended access to log files via standard filesystem operations, a different vulnerability than CVE-2009-1173.

Learn more about our Cis Benchmark Audit For Ibm I.