IBM Security Bulletin: A security vulnerability in IBM WebSphere Application Server affects IBM Security Access Manager for Mobile (CVE-2015-2017)
IBM Security Access Manager for Mobile is affected by a HTTP response splitting vulnerability in IBM WebSphere Application Server.
CVE(s): CVE-2015-2017
Affected product(s) and affected version(s):
IBM Security Access Manager for Mobile version 8, all firmware versions
IBM Security Access Manager for Mobile version 9, all firmware versions
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/255Hn1z
X-Force Database: http://ift.tt/1NzQBek
from IBM Product Security Incident Response Team http://ift.tt/1ZXeVbq