Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3300

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2012-3300
Last Modified 15 Oct 2012 12:00:00
Published 25 Sep 2012 04:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2012-3300

Summary

IBM WebSphere Commerce 7.0 before 7.0.0.6, when persistent sessions and personalization IDs are enabled, allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors.

Vulnerable Systems

Application

  • Ibm Websphere Commerce 7.0

  • Ibm Websphere Commerce 7.0.0.1

  • Ibm Websphere Commerce 7.0.0.2

  • Ibm Websphere Commerce 7.0.0.3

  • Ibm Websphere Commerce 7.0.0.4

  • Ibm Websphere Commerce 7.0.0.5


References

XF - websphere-commerce-personalizationid-dos(77382)

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg21610909

AIXAPAR - JR42771


Last Updated: 27 May 2016 11:00:48