Описание
IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User Authorization File (UAF) data, which allows local users to kill listener processes and the command server via a control command.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:ibm:websphere_mq:6.0:*:*:*:*:*:*:*
cpe:2.3:o:hp:openvms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00051
Низкий
1.9 Low
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User Authorization File (UAF) data, which allows local users to kill listener processes and the command server via a control command.
EPSS
Процентиль: 16%
0.00051
Низкий
1.9 Low
CVSS2
Дефекты
CWE-264