Vulnerability Database

296,334

Total vulnerabilities in the database

CVE-2017-1301

IBM Spectrum Protect 7.1 and 8.1 could allow a local attacker to launch a symlink attack. IBM Spectrum Protect Backup-archive Client creates temporary files insecurely. A local attacker could exploit this vulnerability by creating a symbolic link from a temporary file to various files on the system, which could allow the attacker to overwrite arbitrary files on the system with elevated privileges. IBM X-Force ID: 125163.

  • Published: Oct 5, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-1301
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 3.6
  • AV:L/AC:L/Au:N/C:N/I:P/A:P

CWEs:

Software From Fixed in
ibm / tivoli_storage_manager 6.3.6.100 6.3.6.100.x
ibm / tivoli_storage_manager 6.4.2 6.4.2.x
ibm / tivoli_storage_manager 7.1.0.1 7.1.0.1.x
ibm / tivoli_storage_manager 7.1.5 7.1.5.x
ibm / tivoli_storage_manager 6.4.2.100 6.4.2.100.x
ibm / tivoli_storage_manager 6.3 6.3.x
ibm / tivoli_storage_manager 6.1 6.1.x
ibm / tivoli_storage_manager 6.1.5.5 6.1.5.5.x
ibm / tivoli_storage_manager 6.3.5.1 6.3.5.1.x
ibm / tivoli_storage_manager 7.1.0.2 7.1.0.2.x
ibm / tivoli_storage_manager 6.1.5.6 6.1.5.6.x
ibm / tivoli_storage_manager 6.4.2.500 6.4.2.500.x
ibm / tivoli_storage_manager 6.4.3.1 6.4.3.1.x
ibm / tivoli_storage_manager 6.1.3 6.1.3.x
ibm / tivoli_storage_manager 7.1.3.1 7.1.3.1.x
ibm / tivoli_storage_manager 6.4.3 6.4.3.x
ibm / tivoli_storage_manager 7.1.4 7.1.4.x
ibm / tivoli_storage_manager 6.1.5.4 6.1.5.4.x
ibm / tivoli_storage_manager 6.3.1 6.3.1.x
ibm / tivoli_storage_manager 6.3.0.15 6.3.0.15.x
ibm / tivoli_storage_manager 6.3.1.2 6.3.1.2.x
ibm / tivoli_storage_manager 6.3.5 6.3.5.x
ibm / tivoli_storage_manager 7.1.4.2 7.1.4.2.x
ibm / tivoli_storage_manager 7.1.0.3 7.1.0.3.x
ibm / tivoli_storage_manager 6.3.0.17 6.3.0.17.x
ibm / tivoli_storage_manager 7.1.1.1 7.1.1.1.x
ibm / tivoli_storage_manager 8.1.0 8.1.0.x
ibm / tivoli_storage_manager 6.1.4 6.1.4.x
ibm / tivoli_storage_manager 6.4.2.600 6.4.2.600.x
ibm / tivoli_storage_manager 6.2.3 6.2.3.x
ibm / tivoli_storage_manager 7.1.3.000 7.1.3.000.x
ibm / tivoli_storage_manager 6.3.6 6.3.6.x
ibm / tivoli_storage_manager 7.1.1.200 7.1.1.200.x
ibm / tivoli_storage_manager 6.3.3 6.3.3.x
ibm / tivoli_storage_manager 6.3.0.5 6.3.0.5.x
ibm / tivoli_storage_manager 7.1.1 7.1.1.x
ibm / tivoli_storage_manager 7.1..5.100 7.1..5.100.x
ibm / tivoli_storage_manager 7.1.3.2 7.1.3.2.x
ibm / tivoli_storage_manager 6.1.2 6.1.2.x
ibm / tivoli_storage_manager 6.3.4 6.3.4.x
ibm / tivoli_storage_manager 6.1.1 6.1.1.x
ibm / tivoli_storage_manager 6.4.2.200 6.4.2.200.x
ibm / tivoli_storage_manager 6.3.2.2 6.3.2.2.x
ibm / tivoli_storage_manager 6.2.0 6.2.0.x
ibm / tivoli_storage_manager 7.1.4.1 7.1.4.1.x
ibm / tivoli_storage_manager 6.2.2 6.2.2.x
ibm / tivoli_storage_manager 7.1.1.100 7.1.1.100.x
ibm / tivoli_storage_manager 6.1.5 6.1.5.x
ibm / tivoli_storage_manager 7.1.3 7.1.3.x
ibm / tivoli_storage_manager 6.1.0 6.1.0.x
ibm / tivoli_storage_manager 7.1.1.300 7.1.1.300.x
ibm / tivoli_storage_manager 6.2.4 6.2.4.x
ibm / tivoli_storage_manager 7.1.5.200 7.1.5.200.x
ibm / tivoli_storage_manager 6.4.1.0 6.4.1.0.x
ibm / tivoli_storage_manager 7.1.1.2 7.1.1.2.x
ibm / tivoli_storage_manager 7.1.6 7.1.6.x
ibm / tivoli_storage_manager 6.2.1 6.2.1.x
ibm / tivoli_storage_manager 7.1.3.100 7.1.3.100.x
ibm / tivoli_storage_manager 7.1 7.1.x
ibm / tivoli_storage_manager 6.4.1 6.4.1.x
ibm / tivoli_storage_manager 8.1.0.2 8.1.0.2.x
ibm / tivoli_storage_manager 7.1.6.6 7.1.6.6.x