CVE-2014-6119

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to execute arbitrary code via a crafted executable file in an archive.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:security_appscan:8.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan:8.6:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan:8.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan:8.8:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan:9.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan:9.0.0.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:security_appscan_source:9.0.1:*:*:*:enterprise:*:*:*

History

21 Nov 2024, 02:13

Type Values Removed Values Added
References () http://secunia.com/advisories/62012 - () http://secunia.com/advisories/62012 -
References () http://www-01.ibm.com/support/docview.wss?uid=swg21693035 - Vendor Advisory () http://www-01.ibm.com/support/docview.wss?uid=swg21693035 - Vendor Advisory
References () http://www-01.ibm.com/support/docview.wss?uid=swg21693183 - () http://www-01.ibm.com/support/docview.wss?uid=swg21693183 -
References () http://www.securitytracker.com/id/1031427 - () http://www.securitytracker.com/id/1031427 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/96720 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/96720 -

Information

Published : 2014-12-23 02:59

Updated : 2024-11-21 02:13


NVD link : CVE-2014-6119

Mitre link : CVE-2014-6119

CVE.ORG link : CVE-2014-6119


JSON object : View

Products Affected

ibm

  • security_appscan_source
  • security_appscan
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')