Home Unlabelled IBM Security Bulletin: No verification of user rights for certain applications on MaaS360 Windows installations. (CVE-2017-1422).

IBM Security Bulletin: No verification of user rights for certain applications on MaaS360 Windows installations. (CVE-2017-1422).

By
Saturday, August 19, 2017
Read
Add Comment

EMSAgentCmd.exe executes commands without verifying the source of the request. Additionally, commands are not restricted to operating within the boundaries of the application’s self.

CVE(s): CVE-2017-1422

Affected product(s) and affected version(s):

Product/Version
MaaS360 DTM all versions up to 3.81

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2wbKYiX
X-Force Database: http://ift.tt/2vSmysh

The post IBM Security Bulletin: No verification of user rights for certain applications on MaaS360 Windows installations. (CVE-2017-1422). appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2wbUna1
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us