CVE-2007-2063

by Fred · 17/04/2007

SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX_BATCH_UMASK is missing from the environment, creates HFS files with insecure permissions, which allows local users to read or modify these files and have other unknown impact.

Date published : 2007-04-17

http://www.securityfocus.com/bid/23508

http://www.ssh.com/documents/33/SSH_Tectia_Server_5.4.0_zOS_releasenotes.txt

CVE-2007-2063

Similar

Recent Posts

Categories

CVE-2007-2063

Share this:

Similar

Recent Posts

Categories

Tags