Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Additional Password Disclosure via application tracing in FlashCopy Manager on Windows, Data Protection for Exchange, and Data Protection for SQL CVE-2015-7404 |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
The Tivoli Storage Manager (TSM) password is displayed in plain text via application trace output when the "Change TSM Password" (changetsmpassword) command is used and application tracing is enabled. CVE(s): CVE-2015-7404 Affected product(s) and affected version(s): Tivoli Storage FlashCopy Manager on Windows 2.1, 2.2, 3.1, 3.2, and 4.1 Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 5.5, 6.1, 6.3, 6.4, and 7.1Note: This component does not More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_additional_password_disclosure_via_application_tracing_in_flashcopy_manager_on_windows_data_protection_for_exchange_and_data_protection_for_sql_cve_2015_7404?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-7404 ,CVE-2015-2613 ,CVE-2015-2601 ,CVE-2015-2625 ,CVE-2015-1931 ,CVE-2015-4000 ,CVE-2012-6153 and CVE-2014-3577. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-11-12 |