3 matches found
Security Bulletin: Vulnerability in WebSphere Commerce REST services (CVE-2012-3298) *|* -9958B33F7781FF2C85257A77006ED4
Question Security Bulletin: Vulnerability in WebSphere Commerce REST services CVE-2012-3298 | -9958B33F7781FF2C85257A77006ED44E- | Answer Technote troubleshooting ProblemAbstract WebSphere Commerce REST services framework contains security vulnerability. Resolving the problem VULNERABILITY DETAIL...
IBM WebSphere Commerce Enterprise REST服务安全限制绕过漏洞
BUGTRAQ ID: 55684 CVE ID: CVE-2012-3298,CVE-2012-3300 IBM WebSphere Commerce Enterprise 是业界领先的电子商务解决方案。 IBM WebSphere Commerce v7.0.0.0 - 7.0.0.5存在安全漏洞,成功利用后可允许远程攻击者绕过某些安全限制并执行未授权操作。 1 REST服务框架内存在错误,可被利用非法访问资源。 2)处理持久会话和个性化ID时存在错误,可被利用消耗系统资源并显示服务不可用。 0 IBM WebSphere Commerce Enterprise 7.0.0.0 -...
CVE-2012-3298
CVE-2012-3298 affects IBM WebSphere Commerce 7.0 Feature Pack 4 REST services framework. The vulnerability enables remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors; CVSS v2 base score reported as 5.0 (vector AV:N/AC:L/Au:N/C:N/I:P...