IBM Security Bulletin: IBM Client Application Access InstallShield vulnerable to DLL planting (CVE-2016-2542)
IBM Client Application Access uses InstallShield which generates install executables that are vulnerable to a DLL-planting vulnerability.
CVE(s): CVE-2016-2542
Affected product(s) and affected version(s):
This vulnerability affects installers of following versions of IBM Client Application Access
– IBM Client Application Access 1.0.0
– IBM Client Application Access 1.0.0.1
– IBM Client Application Access 1.0.0.1 Interim Fix 1
NOTE: This vulnerability does not affect installed versions of IBM Client Application Access.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1PiNx1G
X-Force Database: http://ift.tt/1rhWtyP
from IBM Product Security Incident Response Team http://ift.tt/1PLvU0h