Boletines de Vulnerabilidades

IBM Security Bulletin: Multiple vulnerabilities in PHP as used by IBM QRadar Incident Forensics 7.2 MR2. (CVE-2014-3515, CVE-2014-4049, CVE-2014-3981, CVE-2014-0238, CVE-2014-0237, CVE-2014-4721)

Información sobre el sistema
   
Software afectado IBM

Descripción
The PHP language version used by IBM QRadar Incident Forensics 7.2 MR2 contains multiple vulnerabilities. CVE(s): CVE-2014-3515, CVE-2014-4049, CVE-2014-3981, CVE-2014-0238, CVE-2014-0237 and CVE-2014-4721 Affected product(s) and affected version(s): IBM QRadar Incident Forensics 7.2 MR2 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21683330 X-Force Database:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_php_as_used_by_ibm_qradar_incident_forensics_7_2_mr2_cve_2014_3515_cve_2014_4049_cve_2014_3981_cve_2014_0238_cve_2014_0237_cve_2014_4721?lang=en_u

Identificadores estándar
Propiedad Valor
CVE CVE-2014-3515 ,CVE-2014-4049 ,CVE-2014-3981 ,CVE-2014-0238 ,CVE-2014-0237 ,CVE-2014-4721 ,CVE-2014-0221 ,CVE-2014-0224 ,CVE-2014-0195 ,CVE-2014-0198 ,CVE-2010-5298 ,CVE-2014-3470 ,CVE-2014-3094 ,CVE-2013-6954 ,CVE-2013-6629 ,CVE-2014-2421 ,CVE-2014-0453 ,CVE-2014-1876 ,CVE-2014-4244 and CVE-2014-4263.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-09-05

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT