Denial of Service Vulnerability in IBM Sterling Connect:Direct
CVE-2016-5992

2.5LOW

Key Information:

Vendor
IBM
Status
Sterling Connect\
Vendor
CVE Published:
25 November 2016

Summary

Local users on Windows systems running IBM Sterling Connect:Direct versions 4.5.00, 4.5.01, or prior to 4.6.0.6 iFix008 and 4.7.0.4 can exploit a vulnerability that results in denial of service. This can allow unauthorized access to system resources, potentially impacting the availability of the service.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21989807
x_refsource_CONFIRM
http://www.securityfocus.com/bid/94514
vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg1IT16911
vendor-advisoryx_refsource_AIXAPAR

CVSS V3.1

Score:
2.5
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.