Home Unlabelled IBM Security Bulletin: BigFix Platform has a vulnerability allowing unrestricted file upload (CVE-2016-0214)

IBM Security Bulletin: BigFix Platform has a vulnerability allowing unrestricted file upload (CVE-2016-0214)

By
Tuesday, November 08, 2016
Read
Add Comment

Unrestricted file upload on relays/servers with relay authentication disabled (Default setting). Enabling relay authentication seems to break features on the BigFix server.

CVE(s): CVE-2016-0214

Affected product(s) and affected version(s):

BigFix Platform version 9.0
BigFix Platform version 9.1
BigFix Platform version 9.2
BigFix Platform version 9.5

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fPxkeh
X-Force Database: http://ift.tt/2fvJpkZ



from IBM Product Security Incident Response Team http://ift.tt/2fPv471
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us