SymmetricalDataSecurity: IBM Security Bulletin: Vulnerability in XML Entity Processsing affects IBM License Metric Tool v9.x and IBM BigFix Inventory v9.x (CVE-2016-8980)

Wednesday, December 28, 2016

IBM Security Bulletin: Vulnerability in XML Entity Processsing affects IBM License Metric Tool v9.x and IBM BigFix Inventory v9.x (CVE-2016-8980)

The product does not disable external XML Entity Processsing which can lead to information disclosure and denial of service attacks.

CVE(s): CVE-2016-8980

Affected product(s) and affected version(s):

IBM License Metric Tool v9.x
IBM BigFix Inventory v9.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ihnUs3
X-Force Database: http://ift.tt/2hopO5I

from IBM Product Security Incident Response Team http://ift.tt/2ihlPwa

SymmetricalDataSecurity

Wednesday, December 28, 2016

IBM Security Bulletin: Vulnerability in XML Entity Processsing affects IBM License Metric Tool v9.x and IBM BigFix Inventory v9.x (CVE-2016-8980)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews