IBM WebSphere Products Java Multiple Vulnerabilities

Impact

• Denial of Service
• Remote Code Execution
• Information Disclosure

System / Technologies affected

• IBM WebSphere MQ 7.x
• IBM WebSphere Operational Decision Management 7.x
• IBM WebSphere Operational Decision Management 8.x
• IBM WebSphere ILOG JRules 7.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

• Apply Fix Pack or Interim Fix. Please see the vendor's advisory for details.
  http://www.ibm.com/support/docview.wss?uid=swg21635864
  http://www.ibm.com/support/docview.wss?uid=swg21633669
  http://www.ibm.com/support/docview.wss?uid=swg21633674

Vulnerability Identifier

• CVE-2012-1531
• CVE-2012-1532
• CVE-2012-1533
• CVE-2012-1541
• CVE-2012-3143
• CVE-2012-3159
• CVE-2012-3213
• CVE-2012-3216
• CVE-2012-3342
• CVE-2012-5068
• CVE-2012-5069
• CVE-2012-5071
• CVE-2012-5072
• CVE-2012-5073
• CVE-2012-5075
• CVE-2012-5079
• CVE-2012-5081
• CVE-2012-5083
• CVE-2012-5084
• CVE-2012-5089
• CVE-2013-0169
• CVE-2013-0351
• CVE-2013-0409
• CVE-2013-0419
• CVE-2013-0423
• CVE-2013-0424
• CVE-2013-0425
• CVE-2013-0426
• CVE-2013-0427
• CVE-2013-0428
• CVE-2013-0432
• CVE-2013-0433
• CVE-2013-0434
• CVE-2013-0435
• CVE-2013-0438
• CVE-2013-0440
• CVE-2013-0441
• CVE-2013-0442
• CVE-2013-0443
• CVE-2013-0445
• CVE-2013-0446
• CVE-2013-0450
• CVE-2013-0809
• CVE-2013-1473
• CVE-2013-1475
• CVE-2013-1476
• CVE-2013-1478
• CVE-2013-1480
• CVE-2013-1481
• CVE-2013-1486
• CVE-2013-1487
• CVE-2013-1493

Source

• Secunia
• IBM

Related Link

• http://secunia.com/advisories/53336/
• http://secunia.com/advisories/53332/
• http://secunia.com/advisories/53354/
• http://secunia.com/advisories/52872/
• http://www.ibm.com/support/docview.wss?uid=swg21635864
• http://www.ibm.com/support/docview.wss?uid=swg21633669
• http://www.ibm.com/support/docview.wss?uid=swg21633674