Lucene search

[email protected]NVD:CVE-2011-1389

HistoryJan 19, 2012 - 7:55 p.m.

CVE-2011-1389

2012-01-1919:55:00

CWE-22

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.135 Low

EPSS

Percentile

95.6%

JSON

Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-4135.

Affected configurations

NVD

Node

ibmrational_license_key_serverMatch8.0

ibmrational_license_key_serverMatch8.1

ibmrational_license_key_serverMatch8.1.1

ibmrational_license_key_serverMatch8.1.2

ibmrational_license_serverMatch7.0

ibmrational_license_serverMatch7.1

ibmrational_license_serverMatch7.5

ibmtelelogic_license_serverMatch2.0

References

kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1

secunia.com/advisories/47522

secunia.com/advisories/47524

www.flexerasoftware.com/pl/13057.htm

www.ibm.com/support/docview.wss?uid=swg21577760

www.securityfocus.com/bid/49191

www.zerodayinitiative.com/advisories/ZDI-11-272/

exchange.xforce.ibmcloud.com/vulnerabilities/71739

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.135 Low

EPSS

Percentile

95.6%

JSON

Related for NVD:CVE-2011-1389

cve2 cvelist2 nessus1 prion2 nvd1 ibm2 kaspersky1