CVE-2011-1389

Currently unrated

Key Information:

Vendor: IBM
Status: Rational License Server; Rational License Key Server; Telelogic License Server
Vendor: CVE Published:; 19 January 2012

Summary

Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-4135.

References

http://www.flexerasoftware.com/pl/13057.htm

x_refsource_MISC

http://secunia.com/advisories/47524

third-party-advisoryx_refsource_SECUNIA

http://kb.flexerasoftware.com/selfservice/microsites/sear...

x_refsource_MISC

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 19, 2012
Vulnerability Reserved
Mar 10, 2011