SymmetricalDataSecurity: IBM Security Bulletin: Security Vulnerability in Apache Commons FileUpload affects IBM Web Experience Factory (CVE-2016-3092 )

Tuesday, September 27, 2016

IBM Security Bulletin: Security Vulnerability in Apache Commons FileUpload affects IBM Web Experience Factory (CVE-2016-3092 )

Apache Commons FileUpload, which is bundled with IBM Web Experience Factory, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string.

CVE(s): CVE-2016-3092

Affected product(s) and affected version(s):

Web Experience Factory 8.0.0.0 – 8.0.0.3

Web Experience Factory 8.5.0.0 – 8.5.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2d4gszJ
X-Force Database: http://ift.tt/2bozrA8

from IBM Product Security Incident Response Team http://ift.tt/2dpwWxH

SymmetricalDataSecurity

Tuesday, September 27, 2016

IBM Security Bulletin: Security Vulnerability in Apache Commons FileUpload affects IBM Web Experience Factory (CVE-2016-3092 )

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews