CVE-2014-0904

Currently unrated

Key Information:

Vendor: IBM
Status: Security Appscan
Vendor: CVE Published:; 26 March 2014

Summary

The update process in IBM Security AppScan Standard 7.9 through 8.8 does not require integrity checks of downloaded files, which allows remote attackers to execute arbitrary code via a crafted file.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21666775

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/91536

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 26, 2014
Vulnerability Reserved
Jan 6, 2014