3 matches found
Security Bulletin: XML External Entity (XXE) vulnerabilities in ClearQuest (CVE-2014-0950)
Summary IBM Rational ClearQuese is vulnerable to XML external entity attacks. These attacks could cause denial of service or be used to attack other servers accessible from a client or server. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts...
CVE-2014-0950
Multiple XML external entity XXE vulnerabilities in 1 CQWeb / CM Server, 2 ClearQuest Native client, 3 ClearQuest Eclipse client, and 4 ClearQuest Eclipse Designer components in IBM Rational ClearQuest 7.1.1 through 7.1.1.9, 7.1.2 through 7.1.2.13, 8.0.0 through 8.0.0.10, and 8.0.1 through 8.0.1....
CVE-2014-0950
Concrete details found: CVE-2014-0950 affects IBM Rational ClearQuest components (CQWeb/CM Server, ClearQuest Native client, ClearQuest Eclipse client, ClearQuest Eclipse Designer). The root cause is XML External Entity (XXE) processing allowing remote attackers to cause a denial of service or ac...