Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: InfoSphere MashupHub development editor is possibly vulnerable to Denial of Service attack (CVE-2014-0050) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
A denial of service (Dos) vulnerability in the open source library Apache Commons FileUpload could be triggered by uploading a maliciously crafted document into the InfoSphere MashupHub during feed creation. Developers need to ensure that all files uploaded during feed creation are from safe, reliable sources. The InfoSphere MashupHub feed execution, runtime environment is not susceptible to this vulnerability. CVE(s): CVE-2014-0050 and CVE-20140-005 Affected product(s) and affected More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_infosphere_mashuphub_development_editor_is_possibly_vulnerable_to_denial_of_service_attack_cve_2014_0050?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-0050 ,CVE-2014-0114 ,CVE-2014-0460 ,CVE-2014-0878 and CVE-2014-0453. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-06-15 |