OSVDB ID: 84658

Title: IBM WebSphere MQ Access Restriction Bypass Unspecified Arbitrary File Access

Info

Disclosure

Aug 10, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Aug 10, 2012

Description

IBM WebSphere MQ contains an unspecified flaw that is triggered when the program fails to properly enforce access restrictions, which may allow a remote attacker to gain access to an arbitrary file.

Classification

Location: Remote / Network Access
Impact: Loss of Confidentiality
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released a patch to address this vulnerability. Check the vendor advisory or solution in the references section.

Products

IBM Corporation

WebSphere MQ

7.0.3
7.0.4

References

Credit

Unknown or Incomplete



Direct URL: http://osvdb.org/84658