Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0439

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2009-0439
Last Modified 06 Mar 2009 01:49:46
Published 24 Feb 2009 12:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-0439

Summary

Unspecified vulnerability in the queue manager in IBM WebSphere MQ (WMQ) 5.3, 6.0 before 6.0.2.6, and 7.0 before 7.0.0.2 allows local users to gain privileges via vectors related to the (1) setmqaut, (2) dmpmqaut, and (3) dspmqaut authorization commands.

Vulnerable Systems

Application

  • Ibm Websphere Mq 5.3

  • Ibm Websphere Mq 5.3.1

  • Ibm Websphere Mq 6.0.0.0

  • Ibm Websphere Mq 6.0.1.0

  • Ibm Websphere Mq 6.0.1.1

  • Ibm Websphere Mq 6.0.2.0

  • Ibm Websphere Mq 6.0.2.1

  • Ibm Websphere Mq 6.0.2.2

  • Ibm Websphere Mq 6.0.2.3

  • Ibm Websphere Mq 6.0.2.4

  • Ibm Websphere Mq 7.0

  • Ibm Websphere Mq 7.0.0.1


References

XF - websphere-mq-privilege-escalation(48529)

MISC - http://www-01.ibm.com/support/docview.wss?rs=171&uid=swg27006037

BID - 33857

SECUNIA - 34034

OSVDB - 52297


Last Updated: 27 May 2016 10:50:14