IBM330225D1A334066F9EE9BA1C44667DC014DE8845C4F89763CDE1EBD454C7003ASecurity Bulletin: IBM i Access for Windows affected by vulnerability CVE-2015-7416.
EPSS
Percentile
60.1%
Summary
IBM i Access for Windows is affected by vulnerability CVE-2015-7416. This vulnerability affects the Windows system running the IBM i Access for Windows product.
Vulnerability Details
CVEID: CVE-2015-7416 DESCRIPTION: IBM i Access for Windows AFP Workbench Viewer contains a vulnerability that could allow a local denial of service. A local user could create a specially crafted workbench file that could cause the AFP viewer to crash.
CVSS Base Score: 4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/107574 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Affected Products and Versions
Release 7.1 of IBM i Access for Windows is affected.
Remediation/Fixes
The issue can be fixed by obtaining and applying the Service Pack SI57907.
The vulnerability can be remediated by applying Service Pack SI57907. The Service Pack is available at:
http://www-03.ibm.com/systems/power/software/i/access/windows_sp.html
Release 7.1 of IBM i Access for Windows is supported and will be fixed.
Release 7.1 – SI57907
_Important note: _IBM recommends that all users running unsupported versions of affected products upgrade to supported and fixed version of affected products.
Workarounds and Mitigations
None known
Related
EPSS
Percentile
60.1%