Security Bulletin: Vulnerability in Rational License Key Server affecting both the license server, lmgrd, and the vendor daemon, ibmratl (CVE-2011-1389)

Summary meta http-equiv="Refresh" CONTENT="0; URL=http://www.ibm.com/support/docview.wss?uid=swg21622287" Security Bulletin: Rational License Key Server vulnerability CVE-2011-1389, CVE-2011-4135 Vulnerability Details Click browser refresh button to be redirected to Security Bulletin: IBM Rationa...

CVE-2011-1389

Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server RLKS 8.0 through 8.1.2 allow remote attackers to execute arbitrary code via vectors related t...

CVE-2011-4135

CVE-2011-4135 affects Flexera FlexNet Publisher 11.10 lmgrd (FlexNet License Server Manager). The vulnerability stems from directory traversal and related file-rename/load issues on log files, allowing remote attackers to execute arbitrary code via those vectors. CVSSv2 base score 10.0 (HIGH) wit...