SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX_BATCH_UMASK is missing from the environment, creates HFS files with insecure permissions, which allows local users to read or modify these files and have other unknown impact.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-04-18T02:20:00
Updated: 2024-08-07T13:23:49.725Z
Reserved: 2007-04-17T00:00:00
Link: CVE-2007-2063
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-04-18T03:19:00.000
Modified: 2024-11-21T00:29:48.927
Link: CVE-2007-2063
Redhat
No data.