PT-2014-4804 · Hewlett Packard+1 · Hp Icewall Identity Manager+2

Published

2014-04-05

Updated

2019-10-09

CVE-2014-2600

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions HP IceWall Identity Manager versions 4.0 through 4.0 SP1 HP IceWall Identity Manager version 5.0 HP IceWall SSO version 10.0

Description The issue affects HP IceWall Identity Manager and HP IceWall SSO when Apache Commons FileUpload is used, allowing remote authenticated users to cause a denial of service via unknown vectors.

Recommendations For HP IceWall Identity Manager versions 4.0 through 4.0 SP1, update to a version that does not use the vulnerable Apache Commons FileUpload. For HP IceWall Identity Manager version 5.0, update to a version that does not use the vulnerable Apache Commons FileUpload. For HP IceWall SSO version 10.0, update to a version that does not use the vulnerable Apache Commons FileUpload.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-2600

Affected Products

Apache Commons Fileupload

Hp Icewall Identity Manager

Hp Icewall Sso

PT-2014-4804 · Hewlett Packard+1 · Hp Icewall Identity Manager+2

CVE-2014-2600

Related Identifiers

Affected Products

References · 2