Denial of Service Flaw in IBM Rational DOORS Web Access
CVE-2011-2682

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Doors Web Access
Vendor: CVE Published:; 7 July 2011

Summary

The Login component in IBM Rational DOORS Web Access versions prior to 1.4.0.4 contains a vulnerability that could allow remote authenticated users to exhaust license resources. When these users attempt to log in using new accounts that have never been utilized, it leads to a denial of service condition, effectively preventing other users from accessing the system due to license depletion. This issue poses a significant operational risk for organizations relying on IBM Rational DOORS for project management and documentation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PM38477

vendor-advisoryx_refsource_AIXAPAR

http://www.securityfocus.com/bid/48520

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/68484

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jul 7, 2011
Vulnerability Reserved
Jul 7, 2011