CVE-2011-1366

Name of the Vulnerable Software and Affected Versions IBM Rational AppScan Enterprise and AppScan Reporting Console versions 5.2 through 7.9.x IBM Rational AppScan Enterprise and AppScan Reporting Console versions 8.x before 8.0.1.1

Description The issue allows remote attackers to execute arbitrary commands on an agent server. This is achieved by using a crafted ZIP archive, exploiting an unspecified vulnerability in the Import feature.

Recommendations For versions 5.2 through 7.9.x, update to version 8.0.1.1 or later to resolve the issue. For versions 8.x before 8.0.1.1, update to version 8.0.1.1 or later to resolve the issue.