IBM Security Bulletin: Vulnerability in IBM® WebSphere™ Application Server Liberty affects IBM SPSS Analytic Server (CVE-2016-0378)
IBM® WebSphere™ Application Server Liberty could allow a remote attacker to obtain sensitive information caused by improper handling of exceptions when a default error page does not exist.
CVE(s): CVE-2016-0378
Affected product(s) and affected version(s):
IBM SPSS Analytic Server 2.0.0.0
IBM SPSS Analytic Server 2.1.0.0
IBM SPSS Analytic Server 3.0.0.0
IBM SPSS Analytic Server 3.0.1.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2is8vV3
X-Force Database: http://ift.tt/2cG9hh7
from IBM Product Security Incident Response Team http://ift.tt/2isdpkQ