Release date:
Updated on: 2013-02-20
Affected Systems:
IBM Maximo Asset Management 7.5
IBM Maximo Asset Management 7.1
IBM Maximo Asset Management 6.2
Description:
--------------------------------------------------------------------------------
Bugtraq id: 58006
Cve id: CVE-2012-6355, CVE-2012-6356, CVE-2012-6357
The IBM Maximo Asset Management software provides comprehensive Asset lifecycle and maintenance Management for all Asset types.
Multiple Remote Privilege Escalation Vulnerabilities exist in the implementation of IBM Maximo Asset Management. Attackers can exploit these vulnerabilities to escalate permissions in the context of the affected application.
<* Source: IBM (ncsupp@ca.ibm.com)
Link: http://secunia.com/advisories/52132/
Http://www-01.ibm.com/support/docview.wss? Uid = swg21625624
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
IBM
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.ibm.com/support/fixcentral/