← back
CVE-2012-3317

CVE-2012-3317

EPSS 0.4%
IBM WebSphere Message Broker 6.1 before 6.1.0.11, 7.0 before 7.0.0.5, and 8.0 before 8.0.0.2 has incorrect ownership of certain uninstaller Java Runtime Environment (JRE) files, which might allow local users to gain privileges by leveraging access to uid 501 or gid 300.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/77818http://www-01.ibm.com/support/docview.wss?uid=swg1IC85477http://www.ibm.com/support/docview.wss?uid=swg21611401