Directory Traversal Vulnerabilities in IBM Rational License Server
CVE-2011-1389
Currently unrated
Key Information:
- Vendor
IBM
- Vendor
- CVE Published:
- 19 January 2012
What is CVE-2011-1389?
Multiple directory traversal vulnerabilities exist in the vendor daemon of the Rational Common Licensing system. These vulnerabilities in Telelogic License Server (version 2.0), Rational License Server (versions 7.x), and the IBM Rational License Key Server (versions 8.0 to 8.1.2) could enable remote attackers to execute arbitrary code. The vulnerabilities are related to mismanaged save, rename, and load operations on log files, creating potential pathways for exploitation. It is advisable for administrators to patch their systems to mitigate these risks.