PT-2015-5512 · Ibm · Ibm Websphere Portal
Publicado
2015-09-14
·
Atualizado
2016-12-22
·
CVE-2015-1943
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
IBM WebSphere Portal versions 6.1.0.x through 6.1.0.6 CF27
IBM WebSphere Portal versions 6.1.5.x through 6.1.5.3 CF27
IBM WebSphere Portal versions 7.0.x through 7.0.0.2 CF29
IBM WebSphere Portal versions 8.0.x before 8.0.0.1 CF17
IBM WebSphere Portal versions 8.5.0 before CF06
Description
The issue allows remote attackers to cause a denial of service, resulting in CPU and memory consumption, via a crafted request.
Recommendations
For versions 6.1.0.x through 6.1.0.6 CF27, update to a version after 6.1.0.6 CF27.
For versions 6.1.5.x through 6.1.5.3 CF27, update to a version after 6.1.5.3 CF27.
For versions 7.0.x through 7.0.0.2 CF29, update to a version after 7.0.0.2 CF29.
For versions 8.0.x before 8.0.0.1 CF17, update to 8.0.0.1 CF17 or later.
For versions 8.5.0 before CF06, update to CF06 or later.
Correção
DoS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Websphere Portal