LI77129: LOCAL WEBSPHERE CAST IRON USERS DEFINED IN VIEWER GROUP HAVE ADDITIONAL UNINTENDED PRIVILEDGES
Closed as program error.
WebSphere Cast Iron 6.3 users who are defined in the the local "viewer" group have unintended elevated privilege which allows it to be able to publish projects onto the appliance
Verify that your appliance users, under the "user" and "viewer" groups, are trusted with the role of publishing projects.
As a result of an unintended elevated privilege, users under the local "viewer" or "user" groups are able to publish projects onto the appliance. As a work around, verify that your appliance users, under the "user" and "viewer" groups, are trusted with the role of publishing projects.
The WebSphere Cast Iron code has been updated and the elevated privilege has been corrected. This fix is targeted for inclusion in WebSphere Cast Iron fix pack 22.214.171.124 Announcements of new fix packs are made on the WebSphere Cast Iron Support Portal at http://www-947.ibm.com/support/entry/portal/Overview/Software/We bSphere_Cast_Iron_Cloud_integration Fix pack planned delivery schedules can be viewed here: http://www-01.ibm.com/support/docview.wss?uid=swg27036374
Reported component name
WS CASTIRON HV
Reported component ID
Last modified date
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fixed component name
WS CASTIRON HV
Fixed component ID
Applicable component levels
More support for:
WebSphere Cast Iron Hypervisor Edition Standard
Software version: 630
Reference #: LI77129
Modified date: 14 January 2013