PT-2016-6750 · Ibm · Ibm Sterling Connect:Direct

Published

2016-11-25

Updated

2016-11-28

CVE-2016-5991

CVSS v3.1

4.5

Medium

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions IBM Sterling Connect:Direct versions 4.5.00 through 4.5.01 IBM Sterling Connect:Direct versions 4.6.0 through 4.6.0 before 4.6.0.6 iFix008 IBM Sterling Connect:Direct versions 4.7.0 through 4.7.0 before 4.7.0.4

Description The issue allows local users to gain privileges via unspecified vectors.

Recommendations For IBM Sterling Connect:Direct versions 4.5.00 through 4.5.01, update to a version outside of this range. For IBM Sterling Connect:Direct versions 4.6.0 through 4.6.0 before 4.6.0.6 iFix008, apply 4.6.0.6 iFix008 or later. For IBM Sterling Connect:Direct versions 4.7.0 through 4.7.0 before 4.7.0.4, update to 4.7.0.4 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2016-5991

Affected Products

Ibm Sterling Connect:Direct

PT-2016-6750 · Ibm · Ibm Sterling Connect:Direct

CVE-2016-5991

Weakness Enumeration

Related Identifiers

Affected Products

References · 5