‫ IBM Security Access Manager for Web Multiple Vulnerabilities

ID:IRCAD2014103560
Release Date: 2014-10-10
Criticality level: Highly critical
Software:
IBM Security Access Manager for Web 7.x
IBM Security Access Manager for Web 8.x
 
Description:
Multiple vulnerabilities have been reported in IBM Security Access Manager for Web, which can be exploited by malicious people to disclose certain sensitive information, manipulate certain data, conduct cross-site scripting attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.
1)    An unspecified error within the WebSEAL component can be exploited to cause the component to become unresponsive.
Successful exploitation of this vulnerability requires the e-community single sign on (ECSSO) to be used.
The vulnerabilities are reported in versions 7.0.0.0 through 7.0.0.8, 8.0.0.2, 8.0.0.3, and 8.0.0.4.
 
Solution:
Apply fix pack.
 
References:
IBM (IV64910, IV64919, IV64915, IV64911):
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 22 مهر 1393

امتیاز

امتیاز شما
تعداد امتیازها:0