IBM WebSphere Message Broker Java Multiple Vulnerabilities
Last Update Date:
6 May 2013 15:26
Release Date:
6 May 2013
4082
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
IBM has acknowledged multiple vulnerabilities in IBM WebSphere Message Broker, which can be exploited by malicious people to disclose certain sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
The vulnerabilities exist in the bundled version of Java.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Versions 6.1.0.11, 7.0.0.5, and 8.0.0.2 on all platforms with the exception of z/OS
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply APARs.
Vulnerability Identifier
- CVE-2012-1541
- CVE-2012-3213
- CVE-2012-3342
- CVE-2013-0351
- CVE-2013-0409
- CVE-2013-0419
- CVE-2013-0423
- CVE-2013-0424
- CVE-2013-0425
- CVE-2013-0426
- CVE-2013-0427
- CVE-2013-0428
- CVE-2013-0432
- CVE-2013-0433
- CVE-2013-0434
- CVE-2013-0435
- CVE-2013-0438
- CVE-2013-0440
- CVE-2013-0441
- CVE-2013-0442
- CVE-2013-0443
- CVE-2013-0445
- CVE-2013-0446
- CVE-2013-0450
- CVE-2013-0809
- CVE-2013-1473
- CVE-2013-1475
- CVE-2013-1476
- CVE-2013-1478
- CVE-2013-1480
- CVE-2013-1481
- CVE-2013-1486
- CVE-2013-1487
- CVE-2013-1493
Source
Related Link
Share with