IBM Spectrum Protect Client Windows Registry Credentials Disclosure

medium Nessus Plugin ID 100718

Synopsis

A client application installed on the remote host is affected by an information disclosure vulnerability.

Description

The version of IBM Spectrum Protect Client installed on the remote Windows host is affected by an information disclosure vulnerability due to insecure permission for registry keys under the 'HKLM\Software\IBM\ADSM\CurrentVersion\Nodes\' key. A local attacker can exploit this vulnerability to disclose credentials.

IBM Spectrum Protect was formerly known as IBM Tivoli Storage Manager in releases prior to version 7.1.3.

Solution

Refer to the vendor advisory for instructions on remediation.

See Also

http://www-01.ibm.com/support/docview.wss?uid=swg22003738

http://www-01.ibm.com/support/docview.wss?uid=swg22000998

https://improsec.com/blog/vulnerability-in-tsm

Plugin Details

Severity: Medium

ID: 100718

File Name: ibm_spectrum_protect_client_swg22003738.nasl

Version: 1.5

Type: local

Family: Misc.

Published: 6/9/2017

Updated: 3/7/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 2.1

Temporal Score: 1.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2016-8939

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:tivoli_storage_manager_client, x-cpe:/a:ibm:spectrum_protect_client

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 5/31/2017

Reference Information

CVE: CVE-2016-8939

BID: 98783