PT-2006-1884 · Ibm · Ibm Tivoli Micromuse Netcool/Neusecure

Published

2006-02-22

Updated

2018-10-18

CVE-2006-0837

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Tivoli Micromuse Netcool/NeuSecure version 3.0.236

Description The issue allows local users to read sensitive information, such as passwords, due to world-readable permissions for certain files. This includes files like /etc/neusecure.conf, /opt/NeuSecure/etc/cms-3.0.236.buildconf, and /opt/NeuSecure/bin/ns archiver.log.

Recommendations For IBM Tivoli Micromuse Netcool/NeuSecure version 3.0.236, update to a version that includes the fix privately confirmed by IBM to address the world-readable permissions issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-0837

Affected Products

Ibm Tivoli Micromuse Netcool/Neusecure

PT-2006-1884 · Ibm · Ibm Tivoli Micromuse Netcool/Neusecure

CVE-2006-0837

Related Identifiers

Affected Products

References · 11