Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Elevation of privileges vulnerability in Embedded WAS used with Directory Server (CVE-2014-0320) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
IBM embedded WebSphere Application Server (eWAS) 7.0 bundled with IBM Security Directory Server contains an optional install script that may allow elevation of privileges CVE(s): CVE-2014-0320 Affected product(s) and affected version(s): Principal Product and Version(s) Affected Supporting Product and Version IBM Tivoli Directory Server 6.3 eWAS 7.0 IBM Security Directory Server 6.3.1 EWAS 7.0 Refer to the following reference URLs for remediation and additional More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_elevation_of_privileges_vulnerability_in_embedded_was_used_with_directory_server_cve_2014_0320?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-0320 ,CVE-2014-4751 ,CVE-2014-2522 ,CVE-2014-3072 ,CVE-2014-3009 ,CVE-2014-0970 and CVE-2014-0968. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-08-03 |