There is a vulnerability in IBM Runtime Environment Java Version 6 that is used by Financial Transaction Manager for ACH Services, Check Services and Corporate Payment Services. These issues were disclosed as part of the IBM Java SDK updates in April 2016.
CVE(s): CVE-2016-3426
Affected product(s) and affected version(s):
– FTM for ACH v3.0.0.0, v3.0.0.1, v3.0.0.2, v3.0.0.3, v3.0.0.4, v3.0.0.5, v3.0.0.6, v3.0.0.7, v3.0.0.8, v3.0.0.9, v3.0.0.10, v3.0.0.11, v3.0.0.12, v3.0.0.13
– FTM for Check v3.0.0.0, v3.0.0.1, v3.0.0.2, v3.0.0.3, v3.0.0.4, v3.0.0.5, v3.0.0.6, v3.0.0.7, v3.0.0.8, v3.0.0.9, v3.0.0.10, v3.0.0.11, v3.0.0.12, v3.0.0.13,
– FTM for CPS v3.0.0.0, v3.0.0.1, v3.0.0.2, v3.0.0.3, v3.0.0.4, v3.0.0.5, v3.0.0.6, v3.0.0.7, v3.0.0.8, v3.0.0.9, v3.0.0.10, v3.0.0.11, v3.0.0.12, v3.0.0.13
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/24OFK32
X-Force Database: http://ift.tt/1N2N2xe
from IBM Product Security Incident Response Team http://ift.tt/24OGhlB
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.