jetlib.sec » Full Disclosure » ZDI-12-028 : IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control Multiple Remote Code Execution Vulnerabilities

Feeds

133098 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Full Disclosure

• February 08, 2012
• 

  ZDI-12-028 : IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control Multiple Remote Code Execution Vulnerabilities

  Posted: February 8th, 2012, 9:42am PST

  Tags:   

  Posted by ZDI Disclosures on Feb 08

  ZDI-12-028 : IBM Rational Rhapsody BBFlashBack.FBRecorder.1 Control
  Multiple Remote Code Execution Vulnerabilities
  http://www.zerodayinitiative.com/advisories/ZDI-12-028
  February 8, 2012
  
  -- CVE ID:
  CVE-2011-1392
  
  -- CVSS:
  9, AV:N/AC:L/Au:N/C:P/I:P/A:C
  
  -- Affected Vendors:
  
  IBM
  
  -- Affected Products:
  
  IBM Rational Rhapsody
  
  -- TippingPoint(TM) IPS Customer Protection:
  TippingPoint IPS customers have been protected against this
  vulnerability by...