The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files.
References
Configurations
History
No history.
Information
Published : 2000-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2000-1239
Mitre link : CVE-2000-1239
CVE.ORG link : CVE-2000-1239
JSON object : View
Products Affected
ibm
- tivoli_management_framework
CWE