This technote describes how commonly reported security problems affect the IBM Rational Web Platform and Change Management (CM) Server. These platforms serve as Web interfaces for Rational ClearCase, Rational ClearQuest, Rational ProjectConsole, and Rational RequisitePro.
Version 7.x of the Rational Web Platform contains the IBM HTTP Server. This is utilized by RequisitePro and ProjectConsole, as well as ClearQuest and ClearCase in 7.0.x versions. Starting in version 7.1, ClearQuest and ClearCase use CM Server as a Web platform. This also utilizes IBM HTTP Server.
Because IBM HTTP Server is based on the Apache HTTP Server, known software vulnerabilities which exist in native Apache, may trigger security warnings in some vulnerability scanning programs.
[{"Product":{"code":"SSCTQH","label":"Rational Common Components"},"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Component":"Rational Web Platform","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"7.0;7.0.1;7.0.2;7.0.3;7.0.4;7.1;7.1.1;7.1.2","Edition":"","Line of Business":{"code":"","label":""}},{"Product":{"code":"SSSH27","label":"Rational ClearCase"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"ClearCase Web (CCWeb)","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}},{"Product":{"code":"SSSH27","label":"Rational ClearCase"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"CM Server","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}},{"Product":{"code":"SSSH5A","label":"Rational ClearQuest"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"CM Server","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}},{"Product":{"code":"SSSH5A","label":"Rational ClearQuest"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"Web Java Server","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}},{"Product":{"code":"SSSH6V","label":"Rational ProjectConsole"},"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Component":"Web Server","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"","label":""}},{"Product":{"code":"SSSHCT","label":"Rational RequisitePro"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"RequisiteWeb","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}},{"Product":{"code":"SSEQTJ","label":"IBM HTTP Server"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Base Server","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
This document has the abstract of a technical article that is available to authorized users once you have logged on. Please use Log in button above to access the full document. After log in, if you do not have the right authorization for this document, there will be instructions on what to do next.