Skip to main content

IBM WebSphere Application Server for z/OS Arbitrary Command Execution Vulnerability

Last Update Date: 10 Jan 2013 Release Date: 21 Dec 2012 4874 Views

RISK: Medium Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

A vulnerability has been reported in IBM WebSphere Application Server for z/OS, which can be exploited by malicious people to compromise a vulnerable system.

 

The vulnerability is caused due to an unspecified error within the HTTP Server and can be exploited to execute arbitrary commands.


Impact

  • Remote Code Execution

System / Technologies affected

  • IBM WebSphere Application Server 5.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Apply the vendor patch

Vulnerability Identifier


Source


Related Link