Vulnerabilities > CVE-2011-2682 - Resource Management Errors vulnerability in IBM Rational Doors web Access

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

ibm

CWE-399

NVD

Published: 2011-07-07

Updated: 2017-08-29

Summary

The Login component in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote authenticated users to cause a denial of service (license consumption) by trying to login to DOORS Web Access with a new user account that has never been used for a DOORS login.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Rational Doors WEB Access 1.4 IBM Rational Doors WEB Access 1.4.0.1 IBM Rational Doors WEB Access 1.4.0.2 IBM Rational Doors WEB Access 1.4.0.3	4

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.ibm.com/support/docview.wss?uid=swg27020404
http://www.securityfocus.com/bid/48520
http://www-01.ibm.com/support/docview.wss?uid=swg1PM38477
https://exchange.xforce.ibmcloud.com/vulnerabilities/68484