CVE-2016-0291

IBM BigFix Platform 9.0, 9.1 before 9.1.8, and 9.2 before 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302...

CVE-2016-0291

CVE-2016-0291 affects IBM BigFix Platform versions 9.0, 9.1 prior to 9.1.8, and 9.2 prior to 9.2.8. The issue allows remote authenticated users to execute arbitrary OS commands by leveraging the report server access. The root cause is tied to how the report server handles requests, enabling comma...