CVE-2012-5938: High severity sap information steward vulnerability
The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to bypass intended access restrictions via standard filesystem operations.
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2012-5938?
CVE-2012-5938 is classified as a medium severity vulnerability due to improper permissions allowing local users to bypass access restrictions.
How do I fix CVE-2012-5938?
To fix CVE-2012-5938, ensure that the installation process applies correct permissions and ownerships for the affected files in IBM InfoSphere Information Server.
Which versions of IBM InfoSphere Information Server are affected by CVE-2012-5938?
CVE-2012-5938 affects IBM InfoSphere Information Server versions 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux.
What impact does CVE-2012-5938 have on my system?
CVE-2012-5938 allows local users to bypass intended access restrictions, which could lead to unauthorized access to sensitive data.
Are there any workarounds for CVE-2012-5938?
Currently, the recommended approach for CVE-2012-5938 is to apply the necessary updates to ensure appropriate file permissions and ownerships.