IBM WebSphere Portal is vulnerable to a denial of service, caused by possibility to upload temporary files. By upload, a remote attacker could exploit this vulnerability to cause a denial of service.
CVE(s): CVE-2016-5954
Affected product(s) and affected version(s):
WebSphere Portal 8.5
WebSphere Portal 8.0
WebSphere Portal 7
WebSphere Portal 6.1
For unsupported versions IBM recommends upgrading to a fixed, supported version of the product.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2cNDNQD
X-Force Database: http://ift.tt/2cX7wbC
from IBM Product Security Incident Response Team http://ift.tt/2dpciBe
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.