PT-2013-1510 · Ibm · Ibm Infosphere Information Server

Published

2013-01-31

Updated

2017-08-29

CVE-2012-0705

CVSS v2.0

7.1

High

Vector

AV:N/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions InfoSphere Information Server versions 8.1, 8.5 before FP3, 8.7, and 9.1

Description The issue allows remote authenticated users to execute arbitrary commands due to a lack of validation of unspecified input data in InfoSphere Import Export Manager.

Recommendations For version 8.1, update to a version that includes the fix for this issue. For version 8.5, apply FP3 or a later fix pack to resolve the issue. For versions 8.7 and 9.1, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2012-0705

Affected Products

Ibm Infosphere Information Server

PT-2013-1510 · Ibm · Ibm Infosphere Information Server

CVE-2012-0705

Weakness Enumeration

Related Identifiers

Affected Products

References · 3