Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1366

Overview

Vulnerability Score 8.8 8.8
CVE Id CVE-2011-1366
Last Modified 21 Nov 2011 10:55:40
Published 30 Oct 2011 06:55:02
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1366

Summary

Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.

Vulnerable Systems

Application

  • Ibm Rational Appscan 5.2

  • Ibm Rational Appscan 5.4

  • Ibm Rational Appscan 5.5

  • Ibm Rational Appscan 5.5.0

  • Ibm Rational Appscan 5.5.0.1

  • Ibm Rational Appscan 5.5.0.2

  • Ibm Rational Appscan 5.6.0

  • Ibm Rational Appscan 5.6.0.3

  • Ibm Rational Appscan 7.7.0

  • Ibm Rational Appscan 7.7.0.1

  • Ibm Rational Appscan 7.7.0.2

  • Ibm Rational Appscan 7.8.0

  • Ibm Rational Appscan 7.8.0.1

  • Ibm Rational Appscan 7.8.0.2

  • Ibm Rational Appscan 7.9.0

  • Ibm Rational Appscan 7.9.0.1

  • Ibm Rational Appscan 7.9.0.2

  • Ibm Rational Appscan 7.9.0.3

  • Ibm Rational Appscan 8.0.0

  • Ibm Rational Appscan 8.0.0.1

  • Ibm Rational Appscan 8.0.0.2

  • Ibm Rational Appscan 8.0.0.3

  • Ibm Rational Appscan 8.0.1


References

XF - rational-appscan-zip-code-execution(70043)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21515110

SECUNIA - 46329

SECUNIA - 46326


Last Updated: 27 May 2016 10:56:18