Remote Command Execution Vulnerability in IBM Lotus Protector for Mail Security
CVE-2014-0887

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Protector For Mail Security
Vendor: CVE Published:; 25 March 2014

Summary

The Admin Web UI of IBM Lotus Protector for Mail Security versions prior to 2.8.1-22905 contains a vulnerability that permits remote authenticated users to execute arbitrary commands with root privileges. This security flaw can lead to significant breaches of system integrity, allowing attackers to manipulate the server environment.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21668124

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/91173

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 25, 2014
Vulnerability Reserved
Jan 6, 2014