mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 17:21:36 +00:00
120 lines
4.0 KiB
JSON
120 lines
4.0 KiB
JSON
{
|
|
"id": "CVE-2009-0505",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2009-02-25T16:30:00.360",
|
|
"lastModified": "2017-08-08T01:33:57.907",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "The CICS listener in IBM TXSeries for Multiplatforms 6.2 GA waits for a forcepurge acknowledgement from the CICS Application Server (CICSAS) after an eci response timeout, which might allow remote authenticated users to cause a denial of service (forcepurge handling delay), or have unspecified other impact, via vectors involving slow or nonexistent acknowledgement."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "El listener CICS en IBM TXSeries para Multiplatforms 6.2 GA espera por un acuse de recibo \"forcepurge\" desde CICS Application Server (CICSAS) despu\u00e9s de la finalizaci\u00f3n del tiempo de respuesta eci, lo que deber\u00eda permitir a los usuarios remotos autenticados causar una denegaci\u00f3n de servicios (demora en la manipulaci\u00f3n de \"forcepurge\"), o tener otro impacto no especificado, a trav\u00e9s de vectores que implican un lento o no existente acuse de recibo."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "SINGLE",
|
|
"confidentialityImpact": "COMPLETE",
|
|
"integrityImpact": "COMPLETE",
|
|
"availabilityImpact": "COMPLETE",
|
|
"baseScore": 9.0
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 8.0,
|
|
"impactScore": 10.0,
|
|
"acInsufInfo": true,
|
|
"obtainAllPrivilege": true,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-noinfo"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:aix:*:*:*:*:*",
|
|
"matchCriteriaId": "35A53AA4-11A3-4274-9C7C-1AEB1C903E72"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:ga:*:*:*:*:*",
|
|
"matchCriteriaId": "3D4715FA-08F2-41BA-B5D3-D77BB8153E4B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:hp-ia:*:*:*:*:*",
|
|
"matchCriteriaId": "546BE6B7-EEF7-4F3B-8829-19954C03BBE6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:hp-ux:*:*:*:*:*",
|
|
"matchCriteriaId": "FA4F1282-DD92-4ADA-AB93-55E7A8E513BB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:solaris:*:*:*:*:*",
|
|
"matchCriteriaId": "875CC6DB-B368-4E02-8316-C8090A099960"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:ibm:txseries:6.2:-:windows:*:*:*:*:*",
|
|
"matchCriteriaId": "E5227061-2047-4655-A868-6F87B6DBC0EC"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24019725",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/33883",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2009/0911",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48885",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |