IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
BID:17085
Info
IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
| Bugtraq ID: | 17085 |
| Class: | Design Error |
| CVE: |
CVE-2000-1239 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 13 2006 12:00AM |
| Updated: | Jun 27 2007 09:08PM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
IBM Tivoli Lightweight Client Framework 3.7.1 |
| Not Vulnerable: | |
Discussion
IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
Tivoli LCF is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to view sensitive files with elevated privileges. Information obtained may aid in further attacks.
Tivoli LCF is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to view sensitive files with elevated privileges. Information obtained may aid in further attacks.
Exploit / POC
IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
Solution:
The vendor has released an advisory along with configuration parameters to resolve this issue. Please see the referenced advisory for further information.
Solution:
The vendor has released an advisory along with configuration parameters to resolve this issue. Please see the referenced advisory for further information.
References
IBM Tivoli Lightweight Client Framework Information Disclosure Vulnerability
References:
References: