World-writable permissions in Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager

World-writable permissions in Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager

CVE-2015-4927 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager 6.3 before 6.3.6 and 7.1 before 7.1.3 on Linux and AIX uses world-writable permissions for unspecified files, which allows local users to gain privileges by writing to a file.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.