IBM Security Bulletin: IBM Prospect is affected by Expat XML Parser vulnerability (CVE-2013-0340)

Prospect Core 8.0.7 Server is impacted by a denial of service vulnerability in Expat caused by the improper handling of internal entity expansion.

CVE(s): CVE-2013-0340

Affected product(s) and affected version(s):

These vulnerabilities affect the IBM Prospect Core Server:

  • Version 8.0.7.13

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22014083
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/132738

The post IBM Security Bulletin: IBM Prospect is affected by Expat XML Parser vulnerability (CVE-2013-0340) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2Hr9Wx6