The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-03-15T17:00:00

Updated: 2024-08-08T05:45:37.524Z

Reserved: 2006-03-15T00:00:00

Link: CVE-2000-1239

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2000-12-31T05:00:00.000

Modified: 2024-11-20T23:34:20.303

Link: CVE-2000-1239

cve-icon Redhat

No data.