IBM Security Access Manager Remote Code Execution Vulnerability (CVE-2014-3073)
Release date:
Updated on:
Affected Systems:
IBM Security Access Manager
Description:
--------------------------------------------------------------------------------
Bugtraq id: 68137
CVE (CAN) ID: CVE-2014-3073
IBM Security Access Manager is a highly scalable user authentication, authorization, and Web SSO solution.
IBM Security Access Manager (ISAM) for Mobile 8.0, IBM Security Access Manager for Web 7.0, and 8.0 have Security vulnerabilities that allow remote attackers to execute arbitrary code.
<* Source: IBM (ncsupp@ca.ibm.com)
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
IBM
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.ibm.com/support/fixcentral/
Http://xforce.iss.net/xforce/xfdb/93790
Http://www-01.ibm.com/support/docview.wss? Uid = swg1IV61563
Http://www-01.ibm.com/support/docview.wss? Uid = swg21676699
This article permanently updates the link address: