PT-2015-5496 · Ibm · Ibm Infosphere Datastage

Published

2015-06-29

Updated

2016-08-04

CVE-2015-1900

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM InfoSphere DataStage versions 8.1, 8.5, 8.7, 9.1 IBM InfoSphere DataStage versions 11.3 through 11.3.1.2

Description The issue allows local users to write to executable files and consequently obtain root privileges via unspecified vectors.

Recommendations For IBM InfoSphere DataStage versions 8.1, 8.5, 8.7, 9.1, update to a version that is not affected by this issue. For IBM InfoSphere DataStage versions 11.3 through 11.3.1.2, update to a version that is not affected by this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2015-1900

Affected Products

Ibm Infosphere Datastage

PT-2015-5496 · Ibm · Ibm Infosphere Datastage

CVE-2015-1900

Weakness Enumeration

Related Identifiers

Affected Products

References · 4