[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote code execution vulnerability in IBM WebSphere Application Server Network Deployment - CVE-2019-4279 (linux)

ID: oval:org.secpod.oval:def:55222Date: (C)2019-05-31   (M)2023-02-08
Class: VULNERABILITYFamily: unix




The host is installed with WebSphere Application Server Network Deployment 9.x through 9.0.0.11 or 8.5.x through 8.5.5.15 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially-crafted sequence of serialized objects.Successful exploitation could allow remote attackers to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources.

Platform:
Linux
Product:
IBM WebSphere Application Server Network Deployment 9.0
IBM WebSphere Application Server Network Deployment 8.5
Reference:
CVE-2019-4279
CVE    1
CVE-2019-4279
CPE    28
cpe:/a:ibm:websphere_application_server:8.5.5.3
cpe:/a:ibm:websphere_application_server:8.5.5.2
cpe:/a:ibm:websphere_application_server:8.5.5.5
cpe:/a:ibm:websphere_application_server:8.5.5.4
...

© SecPod Technologies