Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMF40DCAFE0068EEB24591CC53A7379B4C7C0E160EE79C7EF8EEF0543250DAC83F
HistoryJul 24, 2020 - 10:19 p.m.

Security Bulletin: IBM Sterling Connect:Direct for UNIX default file create permissions could expose sensitive information to a local user (CVE-2016-0380).

2020-07-2422:19:08
www.ibm.com
13

EPSS

0

Percentile

5.1%

JSON

Summary

By default, when it receives a new data file, IBM Sterling Connect:Direct for UNIX creates the file with permissions 664. These permissions, which give all local users read access to the file, may not be appropriate when Connect:Direct is used to receive sensitive information. Connect:Direct users should assess the vulnerability in the context of the data that Connect:Direct receives and immediately apply the fix if the vulnerability leads to sensitive data being exposed.

Vulnerability Details

CVEID: CVE-2016-0380**
DESCRIPTION:** IBM Sterling Connect:Direct for UNIX creates destination files with permissions that specify group-owner read and write and world read which could lead to a local user obtaining sensitive information.
CVSS Base Score: 4
CVSS Temporal Score: See _https://exchange.xforce.ibmcloud.com/vulnerabilities/112246 _for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

IBM Sterling Connect:Direct for Unix 4.2.0
IBM Sterling Connect:Direct for Unix 4.1.0

Remediation/Fixes

V.R.M.F

| APAR|Remediation/First Fix
—|—|—
4.2.0| IT14769| Apply 4.2.0.4.iFix003, available in cumulative iFix013 on Fix Central
4.1.0| IT14769| Apply 4.1.0.4 iFix073, available in cumulative iFix075 on Fix Central

Fix adds two new initparms to the copy.parms record in initparm.cfg:
recv.file.open.perm=nnn, where nnn is an octal integer describing the desired default permissions for new files received. It’s the same as the value documented for the copy sysopt “permiss”.

recv.file.open.ovrd=x, where x is one of the following three values: ‘Y’ - Allow copy step sysopt “permiss” value to overriderecv.file.open.perm value when receiving a new file. This is the default.
‘N’ - Disallow copy step sysopt “permiss” value to override recv.file.open.perm value when receiving a new file.
‘P’ - Allow copy step sysopt “permiss” value to override recv.file.open.perm value when pnode is receiving a new file.
For IBM Sterling Connect:Direct for Unix versions 4.0.0 and older, IBM recommends upgrading to a fixed, supported version of the product.

Workarounds and Mitigations

None

Related

cve 1
cvelist 1
nvd 1
prion 1
cve
cve
CVE-2016-0380
2016-08-08 01:59:05
cvelist
cvelist
CVE-2016-0380
2016-08-08 01:00:00
nvd
nvd
CVE-2016-0380
2016-08-08 01:59:05
prion
prion
Default credentials
2016-08-08 01:59:00

EPSS

0

Percentile

5.1%

JSON
Related for F40DCAFE0068EEB24591CC53A7379B4C7C0E160EE79C7EF8EEF0543250DAC83F
cve1cvelist1nvd1prion1