Home Unlabelled IBM Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039)

IBM Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039)

By
Friday, July 15, 2016
Read
Add Comment

IBM Traveler is vulnerable to a denial of service caused by an XML External Entity Injection (XXE) error when processing XML data.

CVE(s): CVE-2016-3039

Affected product(s) and affected version(s):

IBM Traveler 8.5.3
IBM Traveler 9.0
IBM Traveler 9.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/29MYQoS
X-Force Database: http://ift.tt/29J20pX



from IBM Product Security Incident Response Team http://ift.tt/29MYXAJ
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us