IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote authenticated users to cause a denial of service (disrupted system operations) by uploading a file to a protected area.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Security_access_manager_for_web | Ibm | 7.0 (including) | 7.0 (including) |
| Security_access_manager_for_web | Ibm | 8.0 (including) | 8.0 (including) |
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV67358
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV67581
- http://www-01.ibm.com/support/docview.wss?uid=swg21684475
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95860
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV67358
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV67581
- http://www-01.ibm.com/support/docview.wss?uid=swg21684475
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95860