Automatically sending number of very large size Web Services SOAP messages can cause DOS attacks.
CVE(s): Not Applicable
Affected product(s) and affected version(s):
IBM Content Navigator 2.0.3
IBM Content Navigator 3.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ulAopb
X-Force Database:
The post IBM Security Bulletin: FileNet CMIS (FNCMIS) and Content Manager 8 CMIS (CM CMIS) does not verify the incoming Web Services request’s message size appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2ulTR9e
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.