PT-2013-1507 · Ibm · Ibm Infosphere Datastage
Published
2013-01-31
·
Updated
2017-08-29
·
CVE-2012-0701
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
InfoSphere DataStage versions 8.1, 8.5 before FP3, and 8.7
Description
The issue concerns the client applications in the DataStage Administrator client, which rely on client-side access control. This allows remote authenticated users to gain privileges via unspecified vectors.
Recommendations
For versions 8.1, 8.5 before FP3, and 8.7, consider restricting access to the DataStage Administrator client until a fix is available.
As a temporary workaround, limit the privileges of remote authenticated users to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Infosphere Datastage