CVE-2013-2989
N/A
N/A
Summary
The file-copying functionality in IBM Sterling Connect:Direct 3.8.00, 4.0.00, and 4.1.0 for UNIX on AIX 6.1 through 7.1 uses incorrect privileges, which allows local users to bypass filesystem read permissions and write permissions by leveraging authentication to the Connect:Direct product.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC86449
- http://www-01.ibm.com/support/docview.wss?uid=swg21637561
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84016
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC86449
- http://www-01.ibm.com/support/docview.wss?uid=swg21637561
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84016
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.