Apache Commons FileUpload, which is bundled with IBM WebSphere Dashboard Framework, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string.
CVE(s): CVE-2016-3092
Affected product(s) and affected version(s):
WebSphere Dashboard Framework 7.0.1
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2d4gFDh
X-Force Database: http://ift.tt/2bozrA8
from IBM Product Security Incident Response Team http://ift.tt/2dpyXKe
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.