IBM Spectrum Protect Client Windows Registry Credentials Disclosure

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

A client application installed on the remote host is affected by an
information disclosure vulnerability.

Description :

The version of IBM Spectrum Protect Client installed on the remote
Windows host is affected by an information disclosure vulnerability
due to insecure permission for registry keys under the
'HKLM\Software\IBM\ADSM\CurrentVersion\Nodes\' key. A local attacker
can exploit this vulnerability to disclose credentials.

IBM Spectrum Protect was formerly known as IBM Tivoli Storage Manager
in releases prior to version 7.1.3.

See also :

http://www-01.ibm.com/support/docview.wss?uid=swg22003738
http://www-01.ibm.com/support/docview.wss?uid=swg22000998
https://improsec.com/blog/vulnerability-in-tsm

Solution :

Refer to the vendor advisory for instructions on remediation.

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 2.0
(CVSS2#E:F/RL:U/RC:ND)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 100718 ()

Bugtraq ID: 98783

CVE ID: CVE-2016-8939

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now