The client applications in the DataStage Administrator client in InfoSphere DataStage in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 rely on client-side access control, which allows remote authenticated users to gain privileges via unspecified vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Infosphere_datastage | Ibm | - (including) | - (including) |
| Infosphere_information_server | Ibm | 8.1 (including) | 8.1 (including) |
| Infosphere_information_server | Ibm | 8.5 (including) | 8.5 (including) |
| Infosphere_information_server | Ibm | 8.5.0.1 (including) | 8.5.0.1 (including) |
| Infosphere_information_server | Ibm | 8.5.0.2 (including) | 8.5.0.2 (including) |
| Infosphere_information_server | Ibm | 8.7 (including) | 8.7 (including) |