Vulnerabilities > CVE-2017-1468 - Unspecified vulnerability in IBM Infosphere Information Server 11.3/11.5/9.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a local user to gain elevated privileges by placing arbitrary files in installation directories. IBM X-force ID: 128467.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/144187/SA-20170913-0.txt |
| id | PACKETSTORM:144187 |
| last seen | 2017-09-15 |
| published | 2017-09-15 |
| reporter | Samandeep Singh |
| source | https://packetstormsecurity.com/files/144187/IBM-Infosphere-Information-Server-Datastage-11.5-Command-Execution-Bypass.html |
| title | IBM Infosphere Information Server / Datastage 11.5 Command Execution / Bypass |
References
- http://www.ibm.com/support/docview.wss?uid=swg22006067
- http://www.ibm.com/support/docview.wss?uid=swg22006067
- http://www.securityfocus.com/bid/100099
- http://www.securityfocus.com/bid/100099
- https://exchange.xforce.ibmcloud.com/vulnerabilities/128467
- https://exchange.xforce.ibmcloud.com/vulnerabilities/128467