Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0959

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-0959
Last Modified 27 Jun 2014 07:24:13
Published 22 May 2014 07:14:14
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-0959

Summary

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 allows remote authenticated users to cause a denial of service (infinite loop) via a login redirect.

Vulnerable Systems

Application

  • Ibm Websphere Portal 6.1.0.0

  • Ibm Websphere Portal 6.1.0.1

  • Ibm Websphere Portal 6.1.0.2

  • Ibm Websphere Portal 6.1.0.3

  • Ibm Websphere Portal 6.1.0.4

  • Ibm Websphere Portal 6.1.0.5

  • Ibm Websphere Portal 6.1.0.6

  • Ibm Websphere Portal 6.1.5.0

  • Ibm Websphere Portal 6.1.5.1

  • Ibm Websphere Portal 6.1.5.2

  • Ibm Websphere Portal 6.1.5.3

  • Ibm Websphere Portal 7.0.0.0

  • Ibm Websphere Portal 7.0.0.1

  • Ibm Websphere Portal 7.0.0.2

  • Ibm Websphere Portal 8.0.0.0

  • Ibm Websphere Portal 8.0.0.1


References

XF - ibm-websphere-cve20140959-dos(92741)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21672572

AIXAPAR - PI16462


Last Updated: 27 May 2016 11:05:22