Home Unlabelled IBM Security Bulletin: Open Source Apache PDFBox Vulnerabilities in IBM Content Classification

IBM Security Bulletin: Open Source Apache PDFBox Vulnerabilities in IBM Content Classification

By
Friday, September 15, 2017
Read
Add Comment

Apache PDFBox could allow a remote authenticated attacker to obtain sensitive information, caused by a XML external entity (XXE) error when processing XML data by the XML parser. A remote attacker could exploit this vulnerability to read arbitrary files on the system or cause a denial of service.

CVE(s): CVE-2016-2175

Affected product(s) and affected version(s):

IBM Content Classification Versions 8.8

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2x5l7Hl
X-Force Database: http://ift.tt/2ihD2Dt

The post IBM Security Bulletin: Open Source Apache PDFBox Vulnerabilities in IBM Content Classification appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2x5l8uT
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us