Home Unlabelled IBM Security Bulletin: OpenSource Apache Taglibs Vulnerability affects Atlas Policy Suite (CVE-2015-0254)

IBM Security Bulletin: OpenSource Apache Taglibs Vulnerability affects Atlas Policy Suite (CVE-2015-0254)

By
Wednesday, December 14, 2016
Read
Add Comment

Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection (XXE) error when processing XML data.

CVE(s): CVE-2015-0254

Affected product(s) and affected version(s):

IBM Atlas eDiscovery Process Management 6.0.3.3 and earlier
IBM Disposal and Governance Management for IT 6.0.3.3 and earlier
IBM Global Retention Policy and Schedule Management 6.0.3.3 and earlier

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hwvex1
X-Force Database: http://ift.tt/1syxSqm



from IBM Product Security Incident Response Team http://ift.tt/2hwvegE
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us