90_ 发表于 2015-11-19 23:41:58

IBM i Access For Windows 7.1拒绝服务

CVE-2015-7422

Vendor:
==============
www.ibm.com
 
Product:
====================================================
IBM i Access for Windows
Release 7.1 of IBM i Access for Windows is affected
 
Vulnerability Type:
========================
Stack Buffer Overflow DOS
 
CVE Reference:
==============
CVE-2015-7422
 
Vulnerability Details:
=====================
IBM i Access for Windows vulnerable to a buffer overflow, caused by
improper bounds checking.
A local attacker could overflow a buffer and cause the program to crash.
 
 
Remediation/Fixes
The issue can be fixed by obtaining and applying the Service Pack SI57907.
 
The buffer overflow vulnerability can be remediated by applying Service
Pack SI57907.
 
The Service Pack is available at:
http://www-03.ibm.com/systems/power/software/i/access/windows_sp.html
 
Workarounds and Mitigations
None known
 
CVSS Base Score: 4
CVSS Temporal Score: See
https://exchange.xforce.ibmcloud.com/vulnerabilities/107770 for the current
score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
 
 
 
Description:
======================================================================
Request Method(s):          [+] local
Vulnerable Product:         [+] IBM i Access for Windows Release 7.1
Affected Area(s):           [+] IBMI i Access

HUC-参谋长 发表于 2015-11-20 00:47:25

支持,看起来不错呢!

小龙 发表于 2015-11-20 16:06:47

感谢楼主的分享~

cl476874045 发表于 2015-11-20 18:48:57

支持,看起来不错呢!

小龙 发表于 2015-11-20 21:21:20

学习学习技术,加油!

a136 发表于 2015-11-21 05:55:25

还是不错的哦,顶了

云游者 发表于 2015-11-21 06:24:20

还是不错的哦,顶了

Lucifer 发表于 2015-11-21 08:56:06

支持中国红客联盟(ihonker.org)

若冰 发表于 2015-11-21 09:42:44

支持中国红客联盟(ihonker.org)

若冰 发表于 2015-11-21 12:52:31

页: [1] 2 3 4 5 6 7 8 9 10
查看完整版本: IBM i Access For Windows 7.1拒绝服务