Boletines de Vulnerabilidades

BM Security Bulletin: Possibility for Accidental Disclosure of Microsoft Exchange Mailboxes to Unauthorized Users (CVE-2013-3976)

Información sobre el sistema
   
Software afectado IBM

Descripción
Due to a problem in the Data Protection for Exchange and FlashCopy Manager for Exchange components, once a mailbox is restored into a .PST file, each individual .PST file will be created as expected, but the contents of that .PST file may not be the contents associated with that mailbox name. CVE(s): CVE-2013-3976 Affected product(s) and affected version(s): Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 6.1 and 6.3 Tivoli Storage FlashCopy Manager:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/bm_security_bulletin_possibility_for_accidental_disclosure_of_microsoft_exchange_mailboxes_to_unauthorized_users_cve_2013_3976?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2013-3976.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-03-19

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT