IBM Security Bulletin: Users are not logged out of the Requirements Management (RM) application after the LTPA timeout period is reached (CVE-2015-0121)
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
For certain configurations of IBM Rational DOORS Next Generation® or IBM Rational Requirements Composer®, it is possible to obtain a configuration where users are not logged out after the IBM WebSphere® LTPA timeout period expires. CVE(s): CVE-2015-0121 Affected product(s) and affected version(s): Rational Requirements Composer 3.0 - 3.0.1.6 Rational Requirements Composer 4.0 - 4.0.7 Rational DOORS Next Generation 4.0 - 4.0.7 Rational DOORS Next Generation 5.0 - 5.0.2
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_users_are_not_logged_out_of_the_requirements_management_rm_application_after_the_ltpa_timeout_period_is_reached_cve_2015_0121?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2015-0121 ,CVE-2015-3456 ,CVE-2014-0227 ,CVE-2015-0189 ,CVE-2015-0200 and CVE-2015-0156. |
