EUVD-2013-3410

Malware in sbrugna...

Security Bulletin: IBM Smart Analytics System 5710 is affected by vulnerabilities in OpenSSL (CVE-2013-0166, CVE-2013-0169)

Abstract The IBM Smart Analytics System 5710 is shipped with SUSE Linux Enterprise Server Edition operating system software. Two security vulnerabilities have been identified in the OpenSSL libraries that are part of the operating system software. See the references section for links to the...

Security Bulletin: IBM Smart Analytics System 7600, 7700, and 7710 are affected by vulnerabilities in OpenSSL (CVE-2013-0166, CVE-2013-0169)

Abstract A number of security vulnerabilities have been identified in the OpenSSL libraries that are part of the operating system software included with the vulnerable systems. Content VULNERABILITY DETAILS CVE IDs: CVE-2013-0166, CVE-2013-0169 DESCRIPTION: The IBM Smart Analytics System 7600, IB...

Security Bulletin: IBM Smart Analytics System 5600 clients affected by vulnerabilities in IBM JRE (CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823)

Abstract These vulnerabilities are only applicable to Java deployments where untrusted code may be executed e.g. Java applets running in a web browser. Content VULNERABILITY DETAILS CVE IDs: CVE-2012-4820, CVE-2012-4821, CVE-2012-4822, CVE-2012-4823 DESCRIPTION: The IBM Smart Analytics System 560...

Security Bulletin: IBM Smart Analytics System 5600 is affected by vulnerabilities in the IBM Java SDK

Abstract The IBM Smart Analytics System 5600 contains a management host that is installed with the Mozilla Firefox browser. The browser is configured to use IBM Java SDK for Java Web Start applications. The browser software is configured in this manner to allow the use of the Remote Control...

Security Bulletin: A security vulnerability has been identified in IBM® DB2® shipped with IBM Smart Analytics System and IBM PureData System for Operational Analytics (CVE-2016-0201, CVE-2015-7420, CVE-2015-7421)

Summary IBM® DB2® is shipped as a component of IBM Smart Analytics System and IBM PureData System for Operational Analytics. Information about a security vulnerability affecting IBM DB2 has been published in a security bulletin. Vulnerability Details Consult the security bulletin Security Bulleti...

Security Bulletin: A security vulnerability has been identified in IBM® WebSphere Application Server shipped with IBM InfoSphere Balanced Warehouse, IBM Smart Analytics System, IBM PureData System for Operational Analytics (CVE-2015-4938)

Summary IBM WebSphere Applicatoin Server is shipped as a component of IBM InfoSphere Balanced Warehouse, IBM Smart Analytics System and IBM PureData System for Operational Analytics. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a...

Security Bulletin: IBM® InfoSphere Balanced Warehouse, IBM Smart Analytics System and IBM PureData System for Operational Analytics are affected by an IBM DB2® LUW denial of service vulnerability in ALTER MODULE statement handling (CVE-2014-3094)

Summary The IBM InfoSphere Balanced Warehouse C3000, C4000, D5100, IBM Smart Analytics System 1050, 2050, 5600, 5710, 7600, 7700, 7710 and IBM PureData System for Operational Analytics ship with either IBM DB2 Version 9.7 or Version 10.1. IBM DB2 is vulnerable to a stack buffer overflow, caused b...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM® General Parallel File System shipped with IBM Smart Analytics System 7600, 7700, 7710 and IBM PureData System for Operational Analytics

Summary IBM General Parallel File System is shipped as a component of IBM Smart Analytics System 7600, 7700, 7710 and IBM PureData System for Operational Analytics. Information about a security vulnerability affecting IBM General Parallel File System has been published in a security bulletin...

Security Bulletin: IBM Smart Analytics System 7600, 7700, 7710 and IBM PureData System for Operational Analytics is affected by multiple vulnerabilities in Network Time Protocol

Summary The IBM Smart Analytics System 7600, 7700, 7710 and IBM PureData System for Operational Analytics is affected by multiple vulnerabilities in Network Time Protocol. Vulnerability Details CVEID: CVE-2014-9293 DESCRIPTION: Network Time Protocol NTP Project NTP daemon ntpd could provide weake...

Security Bulletin: TLS padding vulnerability affects IBM InfoSphere Balanced Warehouse C3000, C4000, IBM Smart Analytics System 1050, 2050, 5600, 5710, 7600, 7700 and 7710 (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM InfoSphere Balanced Warehouse C3000, C4000, IBM Smart Analytics System 1050, 2050, 5600, 5710, 7600, 7700 and 7710. Vulnerability Details CVE-ID:...

Security Bulletin: IBM Smart Analytics System 5600 is affected by multiple vulnerabilities in the IBM SDK Java™ Technology Edition, Version 6

Summary The IBM Smart Analytics System 5600 contains a management host that is installed with the Mozilla Firefox browser. The browser is configured to use IBM SDK Java™ Technology Edition, Version 6 for Java Web Start applications. The browser software is configured in this manner to allow the u...

Security Bulletin: Vulnerabilities in Bash affect IBM Smart Analytics System 5600 (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, CVE-2014-6278)

Summary Six Bash vulnerabilities were disclosed in September 2014. This bulletin addresses the vulnerabilities that have been referred to as “Bash Bug” or “Shellshock” and two memory corruption vulnerabilities. Bash is used by the IBM Smart Analytics System 5600. Vulnerability Details CVE-ID:...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM InfoSphere Balanced Warehouse C3000, C4000, D5100, IBM Smart Analytics System 1050, 2050, 5600 V1, 5600 V2, 5710, 7600, and 7700

Summary IBM WebSphere Application Server is shipped as a component of IBM InfoSphere Balanced Warehouse C3000, C4000, D5100, IBM Smart Analytics System 1050, 2050, 5600 V1, 5600 V2, 5710, 7600, and 7700. Information about a security vulnerability affecting IBM WebSphere Application Server has bee...

CVE-2014-0935

CVE-2014-0935 affects IBM Smart Analytics System 7700 (before FP 2.1.3.0) and 7710 (before FP 2.1.3.0). The vulnerability is described as an unspecified local privilege escalation via vectors related to events. The connected documentation provides affected versions but does not supply concrete ro...

CVE-2014-0935

Unspecified vulnerability in IBM Smart Analytics System 7700 before FP 2.1.3.0 and 7710 before FP 2.1.3.0 allows local users to gain privileges via vectors related to events...

Oracle Java SE CVE-2013-5838 Remote Security Vulnerability

Description Oracle Java SE is prone to a remote security vulnerability. The vulnerability can be exploited over multiple protocols. This issue affects the 'Libraries' sub-component. This vulnerability affects the following supported versions: Java SE 7u25, Java SE Embedded 7u25 Technologies...

CVE-2013-3475

Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to gain privileges via unspecified vectors...

Stack overflow

Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to gain privileges via unspecified vectors...

CVE-2013-3475

CVE-2013-3475 is a local privilege-escalation flaw in the DB2 Audit Facility. The issue affects IBM DB2/DB2 Connect versions 9.1, 9.5, 9.7, 9.8, and 10.1 deployed with IBM Smart Analytics System and related products (e.g., InfoSphere Balanced Warehouse, Balanced Warehouse on C3000/C4000, D5100, a...