Denial of Service Vulnerability in IBM Security Access Manager for Web
CVE-2014-4809

Currently unrated

Key Information:

Vendor: IBM
Status: Security Access Manager For Web 8.0 Firmware; Security Access Manager For Web Appliance
Vendor: CVE Published:; 3 October 2014

Summary

The WebSEAL component in IBM Security Access Manager for Web has a vulnerability that, when e-community SSO is activated, can be exploited by remote attackers. The attack can lead to a denial of service, potentially causing the component to hang, which disrupts normal operations and compromises system stability. It is crucial for organizations using affected versions to apply updates to mitigate the risk of such attacks.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21685246

x_refsource_CONFIRM

http://secunia.com/advisories/61294

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/95376

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Oct 3, 2014
Vulnerability Reserved
Jul 9, 2014