Lucene search
RootSSV:61618HistoryMar 03, 2014 - 12:00 a.m.
IBM WebSphere MQ Telemetry安全绕过漏洞
2014-03-0300:00:00
Root
www.seebug.org
19
0.003 Low
EPSS
Percentile
69.6%
Bugtraq ID:65897
CVE ID:CVE-2013-4054
IBM WebSphere MQ Telemetry将WebSphere MQ提供的通用信息主干扩展到了大范围的远程遥感器、传动器和遥测设备。
IBM WebSphere MQ Telemetry不正确过滤用户提交的URL请求,允许远程攻击者利用漏洞绕过限制访问WebContent目录之外的文件内容。
0
IBM WebSphere MQ Telemetry 7.5
厂商补丁:
IBM
IBM WebSphere MQ Telemetry 7.5.0.3已经修复该漏洞,建议用户下载更新:
http://www-304.ibm.com/support/docview.wss?uid=swg27038184
Related
nvd
nvd
CVE-2013-4054
2014-03-02 04:57:25
prion
prion
Directory traversal
2014-03-02 04:57:00
cve
cve
CVE-2013-4054
2014-03-02 04:57:25
cvelist
cvelist
CVE-2013-4054
2014-03-02 02:00:00
nessus
nessus
IBM WebSphere MQ 7.1 < 7.1.0.5 / 7.5 < 7.5.0.3 Multiple Vulnerabilities
2014-05-19 00:00:00