Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-3160

Overview

Vulnerability Score 8.8 8.8
CVE Id CVE-2009-3160
Last Modified 01 Oct 2009 01:24:23
Published 10 Sep 2009 02:30:00
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-3160

Summary

IBM WebSphere MQ 6.x through 6.0.2.7, 7.0.0.0, 7.0.0.1, 7.0.0.2, and 7.0.1.0, when read ahead or asynchronous message consumption is enabled, allows attackers to have an unspecified impact via unknown vectors, related to a "memory overwrite" issue.

Vulnerable Systems

Application

  • Ibm Websphere Mq 6

  • Ibm Websphere Mq 6.0

  • Ibm Websphere Mq 6.0.0.0

  • Ibm Websphere Mq 6.0.1.0

  • Ibm Websphere Mq 6.0.1.1

  • Ibm Websphere Mq 6.0.2.0

  • Ibm Websphere Mq 6.0.2.1

  • Ibm Websphere Mq 6.0.2.2

  • Ibm Websphere Mq 6.0.2.3

  • Ibm Websphere Mq 6.0.2.4

  • Ibm Websphere Mq 6.0.2.5

  • Ibm Websphere Mq 6.0.2.6

  • Ibm Websphere Mq 6.0.2.7

  • Ibm Websphere Mq 7.0.0.0

  • Ibm Websphere Mq 7.0.0.1

  • Ibm Websphere Mq 7.0.0.2

  • Ibm Websphere Mq 7.0.1.0


References

VUPEN - ADV-2009-2578

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg24024153

BID - 36310

AIXAPAR - IZ56259

SECUNIA - 36647


Last Updated: 27 May 2016 10:51:08