CVE-2000-1239

2006-03-1517:00:00

mitre

www.cve.org

AI Score

6.1

Confidence

Low

EPSS

0.003

Percentile

70.5%

JSON

The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files.

References

www-1.ibm.com/support/docview.wss?uid=swg21082896

www.securityfocus.com/bid/17085

exchange.xforce.ibmcloud.com/vulnerabilities/3927