IBM Security Bulletin: Multiple vulnerabilities in the unzip utility affect IBM Security Access Manager for Mobile.
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
The unzip utility can list, test, or extract files from a zip archive. Buffer overflow vulnerabilities have been identified in the unzip utility. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive is uncompressed. IBM Security Access Manager for Mobile uses the unzip utility. IBM Security Access Manager for Mobile has addressed the applicable CVEs. CVE(s): CVE-2014-8139, CVE-2014-8140, CVE-2014-8141 and CVE-2014-9636 Affected
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_the_unzip_utility_affect_ibm_security_access_manager_for_mobile?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-0488 ,CVE-2015-0478 ,CVE-2015-2808 ,CVE-2015-1916 ,CVE-2014-0227 ,CVE-2015-0209 ,CVE-2015-0286 ,CVE-2015-0289 ,CVE-2014-3569 ,CVE-2014-3570 ,CVE-2014-3572 ,CVE-2014-8275 ,CVE-2015-0204 ,CVE-2015-0205 ,CVE-2014-8139 ,CVE-2014-8140 ,CVE-2014-8141 and CVE-2014-9636. |