IBM Security Bulletin: Rational Test Control Panel in Rational Test Workbench and Rational Test Virtualization Server affected by Apache Tomcat vulnerability (CVE-2017-5664)

Apache Tomcat is vulnerable to a security issue affecting the Rational Test Control Panel component in IBM Rational Test Workbench and Rational Test Virtualization Server.

CVE(s): CVE-2017-5664

Affected product(s) and affected version(s):

Rational Test Control Panel component in Rational Test Virtualization Server and Rational Test Workbench versions:

  • 8.5
  • 8.5.0.1
  • 8.5.0.2
  • 8.5.0.3
  • 8.5.0.4

Versions 8.5.1 and later are unaffected as they do not use Apache Tomcat.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2zlWk5N
X-Force Database: http://ift.tt/2tbJRMe

The post IBM Security Bulletin: Rational Test Control Panel in Rational Test Workbench and Rational Test Virtualization Server affected by Apache Tomcat vulnerability (CVE-2017-5664) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2zkUmCD