[SECURITY] [DLA 292-1] libstruts1.2-java security update

Package : libstruts1.2-java Version : 1.2.9-4+deb6u2 CVE ID : CVE-2014-0899 The Validator in Apache Struts 1.1 and later contains a function to efficiently define rules for input validation across multiple pages during screen transitions. This function contains a vulnerability where input...

CVE-2014-0899

CVE-2014-0899 affects IBM AIX ftpd when run inside a 5.2/5.3 WPAR on AIX 7.1.1 (before SP10) or 7.1.2 (before SP5). A remote authenticated user can bypass file-permission checks and modify arbitrary files via FTP commands. IBM published APARs IV51420 (SP10) and IV51421 (SP5) with fixes; workaroun...

IBM AIX WPAR ftpd安全绕过漏洞

CVE ID：CVE-2014-0899 IBM AIX是一款商业性质的操作系统。 由于ftpd中的错误，可被利用来访问其它受限制的文件。 成功利用此漏洞，需要在5.2或5.3的WPAR环境中运行ftpd。 0 IBM AIX 7.1.1 IBM AIX 7.1.2 厂商补丁： IBM ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://aix.software.ibm.com/aix/efixes/security/wparcreadvisory.asc...

AIX WPAR vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Mar 6 11:54:14 CST 2014 | Updated: Tue Apr 8 09:03:53 CDT 2014 | Update: File set level for affected vwpar.53.rte corrected The most recent version of this document is available here:...