PT-2013-1510 · Ibm · Ibm Infosphere Information Server

Publicado

2013-01-31

Atualizado

2017-08-29

CVE-2012-0705

CVSS v2.0

7.1

Alta

Vetor

AV:N/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions InfoSphere Information Server versions 8.1, 8.5 before FP3, 8.7, and 9.1

Description The issue allows remote authenticated users to execute arbitrary commands due to a lack of validation of unspecified input data in InfoSphere Import Export Manager.

Recommendations For version 8.1, update to a version that includes the fix for this issue. For version 8.5, apply FP3 or a later fix pack to resolve the issue. For versions 8.7 and 9.1, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2012-0705

Produtos afetados

Ibm Infosphere Information Server

PT-2013-1510 · Ibm · Ibm Infosphere Information Server

CVE-2012-0705

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3