RootSSV:60084IBM Rational AppScan企业平台验证代码执行漏洞
EPSS
Percentile
90.8%
Bugtraq ID: 53247
CVE ID:CVE-2012-0736
IBM Rational AppScan是一款Web应用的安全测试工具,可以在开发生命周期中进行自动化动态和静态安全漏洞扫描。
IBM Rational AppScan企业版在某些配置下创建扫描作业时存在错误,允许远程攻击者执行任意代码。诱使用户扫描恶意WEB站,可在目标用户系统上执行任意代码。
0
IBM Rational Policy Tester 8.5
IBM Rational AppScan Reporting Console 8.0.1.1
IBM Rational AppScan Reporting Console 8.0.1
IBM Rational AppScan Reporting Console 5.5.0.2
IBM Rational AppScan Reporting Console 5.2
IBM Rational AppScan Enterprise 8.0.1.1
IBM Rational AppScan Enterprise 8.0.1
IBM Rational AppScan Enterprise 8.0.0.1
IBM Rational AppScan Enterprise 8.0.0
IBM Rational AppScan Enterprise 5.5.0.2
IBM Rational AppScan Enterprise 5.5 Fix Pack 1
IBM Rational AppScan Enterprise 5.5
IBM Rational AppScan Enterprise 5.2
厂商解决方案
IBM Rational Policy Tester 8.5.0.1,IBM Rational AppScan Reporting Console 8.5.0.1和IBM Rational AppScan Enterprise 8.5.0.1已经修复此漏洞,建议用户下载使用:
http://www.ibm.com/
Related
