Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0204

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-0204
Last Modified 31 Jan 2013 12:00:00
Published 31 Jan 2013 07:06:17
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0204

Summary

Untrusted search path vulnerability in InfoSphere Import Export Manager 8.1 through 9.1 in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Vulnerable Systems

Application

  • Ibm Infosphere Import Export Manager 8.1

  • Ibm Infosphere Import Export Manager 8.1.1

  • Ibm Infosphere Import Export Manager 8.1.2

  • Ibm Infosphere Import Export Manager 8.5

  • Ibm Infosphere Import Export Manager 8.7

  • Ibm Infosphere Import Export Manager 9.1

  • Ibm Infosphere Information Server 8.1

  • Ibm Infosphere Information Server 8.5

  • Ibm Infosphere Information Server 8.5.0.1

  • Ibm Infosphere Information Server 8.5.0.2

  • Ibm Infosphere Information Server 8.7

  • Ibm Infosphere Information Server 9.1

  • Ibm Infosphere Information Server Metabrokers %26 Bridges -


References

XF - infosphere-is-dll-code-execution(73255)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21623501


Last Updated: 27 May 2016 10:58:32