Security Bulletin: Vulnerability in Oracle Outside In Technology affects IBM Rational DOORS Next Generation (CVE-2016-3455)

Summary

IBM Rational DOORS Next Generation® is affected by a vulnerability in the Oracle Outside In Technology® that is used as a component.

Vulnerability Details

CVE-ID: CVE-2016-3455
Description: An unspecified vulnerability in Oracle Fusion Middleware related to the Outside In Technology Outside In Filters component has complete confidentiality impact, partial integrity impact, and partial availability impact.
CVSS Base Score: 9.000
CVSS Temporal Score: https://exchange.xforce.ibmcloud.com/vulnerabilities/112406 for more information
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:P/A:P)

Affected Products and Versions

Rational DOORS Next Generation 6.0.2
Rational DOORS Next Generation 6.0.1
Rational DOORS Next Generation 6.0
Rational DOORS Next Generation 5.0.2
Releases prior to 5.0.2 are not affected.

Remediation/Fixes

For the 6.0.2 release, upgrade to version 6.0.2 iFix002 or later.

• Rational DOORS Next Generation 6.0.2 iFix2
  For the 6.0.1 release, upgrade to version 6.0.2 with the latest iFix.
  For the 6.0 release, upgrade to version 6.0.2 with the latest iFix.
  For the 5.0.2 release, upgrade to version 5.0.2 iFix016 or later.

• Rational DOORS Next Generation 5.0.2 iFix16

Workarounds and Mitigations

None