PT-2017-13616 · Ibm · Ibm Infosphere Information Server

Goh Zhi Hao

Published

2017-08-02

Updated

2019-10-03

CVE-2017-1468

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM InfoSphere Information Server versions 9.1, 11.3, and 11.5

Description The issue allows a local user to gain elevated privileges by placing arbitrary files in installation directories.

Recommendations For IBM InfoSphere Information Server version 9.1, restrict access to installation directories to prevent arbitrary file placement. For IBM InfoSphere Information Server version 11.3, limit user privileges to prevent exploitation. For IBM InfoSphere Information Server version 11.5, consider implementing additional security measures to prevent unauthorized file placement in installation directories.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-1468

Affected Products

Ibm Infosphere Information Server

PT-2017-13616 · Ibm · Ibm Infosphere Information Server

CVE-2017-1468

Related Identifiers

Affected Products

References · 5