IBM WebSphere MQ 6.x through 6.0.2.7, 7.0.0.0, 7.0.0.1, 7.0.0.2, and 7.0.1.0, when read ahead or asynchronous message consumption is enabled, allows attackers to have an unspecified impact via unknown vectors, related to a memory overwrite issue.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Websphere_mq | Ibm | 6 (including) | 6 (including) |
| Websphere_mq | Ibm | 6.0 (including) | 6.0 (including) |
| Websphere_mq | Ibm | 6.0.0.0 (including) | 6.0.0.0 (including) |
| Websphere_mq | Ibm | 6.0.1.0 (including) | 6.0.1.0 (including) |
| Websphere_mq | Ibm | 6.0.1.1 (including) | 6.0.1.1 (including) |
| Websphere_mq | Ibm | 6.0.2.0 (including) | 6.0.2.0 (including) |
| Websphere_mq | Ibm | 6.0.2.1 (including) | 6.0.2.1 (including) |
| Websphere_mq | Ibm | 6.0.2.2 (including) | 6.0.2.2 (including) |
| Websphere_mq | Ibm | 6.0.2.3 (including) | 6.0.2.3 (including) |
| Websphere_mq | Ibm | 6.0.2.4 (including) | 6.0.2.4 (including) |
| Websphere_mq | Ibm | 6.0.2.5 (including) | 6.0.2.5 (including) |
| Websphere_mq | Ibm | 6.0.2.6 (including) | 6.0.2.6 (including) |
| Websphere_mq | Ibm | 6.0.2.7 (including) | 6.0.2.7 (including) |
| Websphere_mq | Ibm | 7.0.0.0 (including) | 7.0.0.0 (including) |
| Websphere_mq | Ibm | 7.0.0.1 (including) | 7.0.0.1 (including) |
| Websphere_mq | Ibm | 7.0.0.2 (including) | 7.0.0.2 (including) |
| Websphere_mq | Ibm | 7.0.1.0 (including) | 7.0.1.0 (including) |
References
- http://secunia.com/advisories/36647
- http://www-01.ibm.com/support/docview.wss?uid=swg24024153
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ56259
- http://www.securityfocus.com/bid/36310
- http://www.vupen.com/english/advisories/2009/2578
- http://secunia.com/advisories/36647
- http://www-01.ibm.com/support/docview.wss?uid=swg24024153
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ56259
- http://www.securityfocus.com/bid/36310
- http://www.vupen.com/english/advisories/2009/2578