IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to execute arbitrary code via a crafted executable file in an archive.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:13
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/62012 - | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21693035 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21693183 - | |
References | () http://www.securitytracker.com/id/1031427 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/96720 - |
Information
Published : 2014-12-23 02:59
Updated : 2024-11-21 02:13
NVD link : CVE-2014-6119
Mitre link : CVE-2014-6119
CVE.ORG link : CVE-2014-6119
JSON object : View
Products Affected
ibm
- security_appscan_source
- security_appscan
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')