PT-2015-5512 · Ibm · Ibm Websphere Portal
Published
2015-09-14
·
Updated
2016-12-22
·
CVE-2015-1943
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
IBM WebSphere Portal versions 6.1.0.x through 6.1.0.6 CF27
IBM WebSphere Portal versions 6.1.5.x through 6.1.5.3 CF27
IBM WebSphere Portal versions 7.0.x through 7.0.0.2 CF29
IBM WebSphere Portal versions 8.0.x before 8.0.0.1 CF17
IBM WebSphere Portal versions 8.5.0 before CF06
Description
The issue allows remote attackers to cause a denial of service, resulting in CPU and memory consumption, via a crafted request.
Recommendations
For versions 6.1.0.x through 6.1.0.6 CF27, update to a version after 6.1.0.6 CF27.
For versions 6.1.5.x through 6.1.5.3 CF27, update to a version after 6.1.5.3 CF27.
For versions 7.0.x through 7.0.0.2 CF29, update to a version after 7.0.0.2 CF29.
For versions 8.0.x before 8.0.0.1 CF17, update to 8.0.0.1 CF17 or later.
For versions 8.5.0 before CF06, update to CF06 or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Websphere Portal