Security Bulletin: IBM Operational Decision Manager : CVE-2014-0944, CVE-2014-0945, CVE-2014-0946

Summary This Security Bulletin addresses 3 security vulnerabilities CVE-2014-0944, CVE-2014-0945 and CVE-2014-0946 in IBM Operational Decision Manager. All issue are related to the RES Console provided in Rule Execution Server. Vulnerability Details CVE ID: CVE-2014-0944 DESCRIPTION: IBM...

CVE-2014-0945

Cross-site scripting XSS vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2014-0945

IBM Operational Decision Manager (UK ODM) RES Console vulnerability CVE-2014-0945 is a cross-site scripting issue in the Rule Execution Server. A remote authenticated user can exploit a crafted URL to execute script in the victim’s browser. Affected products/versions include ODM v7.5 before FP3 I...

Fedora 19 : java-1.7.0-openjdk-1.7.0.60-2.4.4.0.fc19 (2014-0945)

Security update to icedtea 2.4.4 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.h tml Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...