Boletines de Vulnerabilidades

IBM Security Bulletin: Apache Tomcat and FileUpload Vulnerabilities in IBM UrbanCode Release (CVE-2014-0050, CVE-2013-4286, CVE-2014-0033, CVE-2013-4322, CVE-2013-4590)

Información sobre el sistema
   
Software afectado IBM

Descripción
Previous releases of IBM UrbanCode Release are affected by vulnerabilities in Apache Tomcat and FileUpload that may allow remote attackers to influence the availability of the server or obtain sensitive information. CVE(s): CVE-2014-0050, CVE-2013-4286, CVE-2014-0033, CVE-2013-4322 and CVE-2013-4590 Affected product(s) and affected version(s): IBM UrbanCode Release v6.0, v6.0.0.1, v6.0.1, v6.0.1.1, v6.0.1.2 and v6.0.1.3 on all supported platforms. Refer to the following reference URLs

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_apache_tomcat_and_fileupload_vulnerabilities_in_ibm_urbancode_release_cve_2014_0050_cve_2013_4286_cve_2014_0033_cve_2013_4322_cve_2013_4590?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2014-0050 ,CVE-2013-4286 ,CVE-2014-0033 ,CVE-2013-4322 ,CVE-2013-4590 ,CVE-2013-4353 ,CVE-2013-6450 ,CVE-2013-6449 ,CVE-2013-6713 and CVE-2013-6714.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-05-30

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT