← volver
CVE-2009-4998

CVE-2009-4998

EPSS 1.1%
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://download2.boulder.ibm.com/sar/CMA/IMA/00y3y/0/readme-4027-P8AE-FP007.htmhttp://download2.boulder.ibm.com/sar/CMA/IMA/00yrk/0/readme-ae351-021.htmhttp://www-01.ibm.com/support/docview.wss?uid=swg1PJ36552