CVE-2015-7404: Infoleak
First published: Sat Nov 14 2015(Updated: )
IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum Protect for Databases) 5.5 before 5.5.6.2, 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server (aka Spectrum Protect for Mail) 5.5 before 5.5.1.1, 6.1 and 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; and Tivoli Storage FlashCopy Manager for Windows (aka Spectrum Protect Snapshot) 2.x and 3.1 before 3.1.1.6, 3.2 before 3.2.1.8, and 4.1 before 4.1.4, when application tracing is configured, write cleartext passwords during changetsmpassword command execution, which allows local users to obtain sensitive information by reading the application trace output.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.2 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.3 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.4 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.5 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =5.5.6 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3.1.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3.1.2 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3.1.3 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.3.1.5 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.0.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.0.2 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1.2 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1.3 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1.4 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =6.4.1.7 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =7.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =7.1.0.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =7.1.0.2 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =7.1.1.1 | |
| Ibm Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server | =7.1.2.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =5.5 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =5.5.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.1.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.1.2 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.1.3 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.3 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.3.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.4 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =6.4.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.0.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.0.2 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.2.0 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.2.1 | |
| Ibm Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server | =7.1.3.0 | |
| IBM Tivoli Storage FlashCopy Manager | =2.1.0 | |
| IBM Tivoli Storage FlashCopy Manager | =2.2.0 | |
| IBM Tivoli Storage FlashCopy Manager | =2.2.1 | |
| IBM Tivoli Storage FlashCopy Manager | =3.1.0 | |
| IBM Tivoli Storage FlashCopy Manager | =3.1.1 | |
| IBM Tivoli Storage FlashCopy Manager | =3.2.0 | |
| IBM Tivoli Storage FlashCopy Manager | =3.2.1 | |
| IBM Tivoli Storage FlashCopy Manager | =4.1.0 | |
| IBM Tivoli Storage FlashCopy Manager | =4.1.0.1 | |
| IBM Tivoli Storage FlashCopy Manager | =6.1.3 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm tivoli storage manager for databases data protection for microsoft sql server
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.2
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.3
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.4
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.5
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/5.5.6
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3.1.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3.1.2
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3.1.3
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.3.1.5
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.0.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.0.2
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1.2
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1.3
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1.4
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/6.4.1.7
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/7.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/7.1.0.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/7.1.0.2
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/7.1.1.1
- version/ibm tivoli storage manager for databases data protection for microsoft sql server/7.1.2.1
- canonical/ibm tivoli storage manager for mail data protection for microsoft exchange server
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/5.5
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/5.5.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.1.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.1.2
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.1.3
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.3
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.3.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.4
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/6.4.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.0.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.0.2
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.2.0
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.2.1
- version/ibm tivoli storage manager for mail data protection for microsoft exchange server/7.1.3.0
- canonical/ibm tivoli storage flashcopy manager
- version/ibm tivoli storage flashcopy manager/2.1.0
- version/ibm tivoli storage flashcopy manager/2.2.0
- version/ibm tivoli storage flashcopy manager/2.2.1
- version/ibm tivoli storage flashcopy manager/3.1.0
- version/ibm tivoli storage flashcopy manager/3.1.1
- version/ibm tivoli storage flashcopy manager/3.2.0
- version/ibm tivoli storage flashcopy manager/3.2.1
- version/ibm tivoli storage flashcopy manager/4.1.0
- version/ibm tivoli storage flashcopy manager/4.1.0.1
- version/ibm tivoli storage flashcopy manager/6.1.3
- vendor/microsoft
- canonical/microsoft windows