Remote Command Execution Vulnerability in IBM Rational AppScan
CVE-2011-1367

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Appscan
Vendor: CVE Published:; 30 October 2011

Summary

A vulnerability exists in IBM Rational AppScan's File Load feature, affecting versions 7.8.x, 7.9.x, and 8.0.x prior to 8.0.0.3. This flaw allows remote attackers to execute arbitrary commands through specially crafted .scan files, potentially compromising the integrity of the system. Users of the affected versions should apply updates promptly to mitigate risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/49989

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/70044

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21515110

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 30, 2011
Vulnerability Reserved
Mar 10, 2011