IBM Security Bulletin: Multiple vulnerabilities affecting web servers that run code in a CGI or CGI-like context affects IBM API Connect (CVE-2016-5385, CVE-2016-1000105)

IBM API Connect is affected by multiple vulnerabilities relating to web servers that run code in a CGI or CGI-like context (CVE-2016-5385, CVE-2016-1000105). IBM has addressed these vulnerabilities.

CVE(s): CVE-2016-5385, CVE-2016-1000105

Affected product(s) and affected version(s):

IBM API Connect V5.0.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hPLf1q
X-Force Database: http://ift.tt/2dv9pkb
X-Force Database: http://ift.tt/2hPQGNM

from IBM Product Security Incident Response Team http://ift.tt/2hDXr7e