IBM InfoSphere Information Server is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data.
CVE(s): CVE-2016-6059
Affected product(s) and affected version(s):
The following product, running on all supported platforms, is affected:
IBM Information Server Framework: versions 11.3, and 11.5
IBM InfoSphere Information Server on Cloud: version 11.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2dV58Fx
X-Force Database: http://ift.tt/2ergRIg
from IBM Product Security Incident Response Team http://ift.tt/2dV4UhK
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.