PT-2013-1508 · Ibm · Ibm Infosphere Information Server

Published

2013-01-31

Updated

2017-08-29

CVE-2012-0702

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Information Services Framework (ISF) in IBM InfoSphere Information Server versions 8.1, 8.5 before FP3, and 8.7

Description The issue concerns improper authorization determination, allowing remote authenticated users to gain privileges.

Recommendations For version 8.1, update to a version that properly determines authorization. For version 8.5, apply FP3 or a later fix pack to address the issue. For version 8.7, update to a version that properly determines authorization.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2012-0702

Affected Products

Ibm Infosphere Information Server

PT-2013-1508 · Ibm · Ibm Infosphere Information Server

CVE-2012-0702

Weakness Enumeration

Related Identifiers

Affected Products

References · 3