[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256288

 
 

909

 
 

199146

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-1366Date: (C)2011-10-30   (M)2023-12-22


Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 8.8
Exploit Score: 8.6
Impact Score: 9.2
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECUNIA-46326
SECUNIA-46329
http://www-01.ibm.com/support/docview.wss?uid=swg21515110
rational-appscan-zip-code-execution(70043)

CPE    11
cpe:/a:ibm:rational_appscan:5.6.0::enterprise
cpe:/a:ibm:rational_appscan:8.0.0.2::enterprise
cpe:/a:ibm:rational_appscan:5.6.0.3::enterprise
cpe:/a:ibm:rational_appscan:5.5.0.1::enterprise
...

© SecPod Technologies