CVE-2009-2093

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Partner Gateway
Vendor: CVE Published:; 13 August 2009

Summary

SQL injection vulnerability in the console in IBM WebSphere Partner Gateway (WPG) Enterprise 6.0 before FP8, 6.1 before FP3, 6.1.1 before FP2, and 6.2 before FP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

http://www.vupen.com/english/advisories/2009/2292

vdb-entryx_refsource_VUPEN

http://www-1.ibm.com/support/docview.wss?uid=swg1JR32609

vendor-advisoryx_refsource_AIXAPAR

http://www-1.ibm.com/support/docview.wss?uid=swg1JR32608

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Aug 13, 2009
Vulnerability Reserved
Jun 16, 2009