CVE-2016-5927

Name of the Vulnerable Software and Affected Versions IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) versions 6.3.x through 6.3.2.5 IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) versions 6.4.x through 6.4.3.2 IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) versions 7.1.x through 7.1.5

Description The issue allows local users to discover an encrypted password by reading application-trace output when certain dsmsetpw tracing is configured.

Recommendations For versions 6.3.x through 6.3.2.5, update to version 6.3.2.6 or later. For versions 6.4.x through 6.4.3.2, update to version 6.4.3.3 or later. For versions 7.1.x through 7.1.5, update to version 7.1.6 or later.