PT-2013-4074 · Ibm · Ibm Infosphere Optim Performance Manager+1

Publicado

2013-08-22

Atualizado

2017-08-29

CVE-2013-2979

CVSS v2.0

4.0

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Optim Performance Manager version 4.1.1 IBM InfoSphere Optim Performance Manager versions prior to 5.2

Description The issue allows remote authenticated users to read arbitrary files via a crafted URL, specifically due to a directory traversal vulnerability.

Recommendations For IBM Optim Performance Manager version 4.1.1, update to a version that is not affected by this issue. For IBM InfoSphere Optim Performance Manager versions prior to 5.2, update to version 5.2 or later.

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2013-2979

Produtos afetados

Ibm Infosphere Optim Performance Manager

Optim Performance Manager

PT-2013-4074 · Ibm · Ibm Infosphere Optim Performance Manager+1

CVE-2013-2979

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3