Weak Permissions in Threat Intelligence Exchange (TIE) Secondary Server Configuration Files and Installation Logs Allow Information Disclosure

Weak Permissions in Threat Intelligence Exchange (TIE) Secondary Server Configuration Files and Installation Logs Allow Information Disclosure

CVE-2015-7238 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The Secondary server in Threat Intelligence Exchange (TIE) before 1.2.0 uses weak permissions for unspecified (1) configuration files and (2) installation logs, which allows local users to obtain sensitive information by reading the files.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.