6.6

CVE-2008-1130

Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and 5.3 before Fix Pack 14 allows attackers to bypass access restrictions for a queue manager via a SVRCONN (MQ client) channel.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmWebsphere Mq Version5.3
IbmWebsphere Mq Version6
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.34% 0.254
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.6 3.9 9.2
AV:L/AC:L/Au:N/C:C/I:C/A:N
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://secunia.com/advisories/29170
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?rs=171&uid=swg1IZ01272
http://www.securityfocus.com/bid/28046
http://www.securitytracker.com/id?1019527
http://www.vupen.com/english/advisories/2008/0719