IBM Security Bulletin: Vulnerability in Apache Tomcat affects IBM Algo Credit Administrator (CVE-2016-3092)

Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component, and is supplied with IBM Algo Credit Administrator. By sending file upload requests, an attacker could exploit this vulnerability to cause the server to become unresponsive.

CVE(s): CVE-2016-3092

Affected product(s) and affected version(s):

IBM Algo Credit Administrator 2.2.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2dpaqIR
X-Force Database: http://ift.tt/2bozrA8



from IBM Product Security Incident Response Team http://ift.tt/2dpb3BZ