Security Bulletin: IBM Connections Security Refresh of IBM Eclipse Help System (CVE-2013-0599)

Aug 27, 2013 4:55 pm EDT

The version of IBM Eclipse Help System that is shipped with IBM Connections contains a vulnerability, displaying debug information in some error responses. CVE(s): and CVE-2013-0599 Affected product(s) and affected version(s): IBM Connections 4.5 IBM Connections 4.0 IBM Connections 3.0.1.1 and earlier releases Refer to the following reference URLs for remediation and additional vulnerability details. ...read more


Security Bulletin: IBM TRIRIGA Application Platform has potential Cross-Site scripting vulnerabilities in various URL’s

Aug 27, 2013 4:41 pm EDT

IBM TRIRIGA Application Platform has potential Cross-Site scripting vulnerabilities in various URL’s. CVE(s):CVE-2013-4003 Affected product(s) and affected version(s): IBM TRIRIGA Application Platform 3.3.1. IBM TRIRIGA Application Platform 3.3 and fix packs IBM TRIRIGA Application Platform 3.2.1 and fix packs IBM TRIRIGA Application Platform 3.2 and fix packs IBM TRIRIGA Application Platform 3.1 and fix packs ...read more


Security Bulletin: IBM Rational Build Forge Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)

Aug 27, 2013 12:17 am EDT

Java API Documentation contains a frame injection vulnerability. CVE(s): and CVE-2013-1571 Affected product(s) and affected version(s): IBM Rational Build Forge version 8.0 and all the earlier versions Refer to the following reference URLs for remediation and additional vulnerability details. Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21642024 X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/84715 ...read more


Security Bulletin: IBM Security SiteProtector System can be affected by a vulnerability in the IBM Eclipse Help System (IEHS) (CVE-2013-0467)

Aug 27, 2013 12:14 am EDT

IBM Security SiteProtector System can be affected by a vulnerability in the IBM Eclipse Help System (IEHS). This vulnerability could allow a remote attacker to obtain the source code of the Help System. CVE(s): and CVE-2013-0467 Affected product(s) and affected version(s): IBM Security SiteProtector System: 2.8.1 and 2.9 Refer to the following reference URLs for ...read more


Security Bulletin: IBM Content Collector – Eclipse Help System Cross Site Scripting Vulnerability (CVE-2013-0464)

Aug 27, 2013 12:12 am EDT

Cross-Site Scripting vulnerability exists in IBM Eclipse Help System, a component bundled with IBM Content Collector, which is used to display the IBM Content Collector help content. CVE(s): and CVE-2013-0464 Affected product(s) and affected version(s): IBM Content Collector 3.0 Refer to the following reference URLs for remediation and additional vulnerability details. Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21646473 X-Force ...read more


Security Bulletin: Source disclosure in IBM Content Collector’s Help System (CVE-2013-0467)

Aug 27, 2013 12:10 am EDT

This bulletin addresses potential source disclosures in IBM Content Collector’s Help System. CVE(s): and CVE-2013-0467 Affected product(s) and affected version(s): IBM Content Collector Versions 2.1, 2.2, 3.0 Refer to the following reference URLs for remediation and additional vulnerability details. Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21644466 X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/81102 ...read more


Security Bulletin: IBM WebSphere Extended Deployment Compute Grid Vulnerability (CVE-2013-4039)

Aug 26, 2013 11:56 pm EDT

Potential security vulnerability fixed in IBM WebSphere Extended Deployment Compute Grid V8.0.0.3 CVE(s): and CVE-2013-4039 Affected product(s) and affected version(s): WebSphere Extended Deployment Compute Grid version 8 Refer to the following reference URLs for remediation and additional vulnerability details. Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21647485 X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/86175 ...read more


Security Bulletin: Information regarding security vulnerability in IBM SDK for Java, which shipped with IBM WebSphere Application Server and is addressed by Oracle CPU June 2013

Aug 26, 2013 11:52 pm EDT

Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM WebSphere Application Server and is included in the referenced products. CVE(s): and CVE 2013-1571 Affected product(s) and affected version(s): IBM WebSphere Process Server Versions 6.0.0, 6.0.1, 6.0.2, 6.1.0, 6.1.2, 6.2.x, 7.0.x IBM WebSphere Process Server for z/OS Versions 6.0.1, 6.0.2, ...read more


Security Bulletin: IBM WebSphere Lombardi Edition – Information regarding security vulnerability in IBM SDK for Java, which is shipped with IBM WebSphere Application Server and addressed by Oracle CPU June 2013

Aug 26, 2013 11:48 pm EDT

Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM WebSphere Application Server and is included in IBM WebSphere Lombardi Edition. CVE(s): and CVE 2013-1571 Affected product(s) and affected version(s): IBM WebSphere Lombardi Edition V7.1.x, 7.2.x Refer to the following reference URLs for remediation and additional vulnerability details. Source Bulletin: ...read more