Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component. By sending file upload requests, an attacker could exploit this vulnerability to cause the server to become unresponsive
CVE(s): CVE-2016-3092
Affected product(s) and affected version(s):
OpenNTF project Social Business SDK 1.11.1 and all previous versions
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2mFQKVf
X-Force Database: http://ift.tt/2bozrA8
The post IBM Security Bulletin: OpenNTF project Social Business SDK CVE-2016-3092 appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2mFJiJF
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.