IBM Support

UML Vizualization tools update for CVE-2015-7439

Download


Abstract

This is an update for IBM Rational Application Developer for WebSphere Software to address a vulnerability in the UML vizualization tools within the product.

Download Description

Table of Contents
Sections Description

The How critical is this fix section provides information related to the impact of this release to allow you to assess how your environment may be affected.

The Prerequisites section provides important information to review prior to the installation of this release.

The Installation instructions section provides the installation instructions necessary to apply this release into your environment.

The Download package section provides the direct link to obtain the download package for installation in your environment.

Prerequisites

Prerequisites include:

One of the following IBM Rational Application Developer for WebSphere Software versions must be installed:

The update for the 8.5 releases will need approximately 3MB of free disk space to download and install the interim fix.

The update for the 9.0, 9.1, and 9.5 releases will need approximately 500KB of free disk space to download and install the interim fix.

Back to top

Installation Instructions

Instructions to download and install the update from the compressed files

  1. Download the update files from Fix Central by following the link listed in the download table below

  2. Extract the compressed files in an appropriate directory. For example, choose to extract to C:\temp\update

  3. Copy the contents of the <extraction location>/features/ directory to <product install directory>/features/

  4. Copy the contents of the <extraction location>/plugins/ directory to <product install directory>/plugins/

Back to top

Download Package

Click the FC link below to download the updates from Fix Central.

For IBM Rational Application Developer for WebSphere Software Versions 8.5.x

  1. On the Select Fixes page, select interim fix: Rational-RAD85-CVE-2015-7439-ifix (Fix for the CVE-2015-7439 vulnerability in the UML Vizualization Tools)

For IBM Rational Application Developer for WebSphere Software Versions 9.0.x

  1. On the Select Fixes page, select interim fix: Rational-RAD90-CVE-2015-7439-ifix (Fix for the CVE-2015-7439 vulnerability in the UML Vizualization Tools)

For IBM Rational Application Developer for WebSphere Software Versions 9.1.x

  1. On the Select Fixes page, select interim fix: Rational-RAD91-CVE-2015-7439-ifix (Fix for the CVE-2015-7439 vulnerability in the UML Vizualization Tools)

For IBM Rational Application Developer for WebSphere Software Versions 9.5.x

  1. On the Select Fixes page, select interim fix: Rational-RAD95-CVE-2015-7439-ifix (Fix for the CVE-2015-7439 vulnerability in the UML Vizualization Tools)

Back to top

How critical is this fix?

Impact Assessment
Impact Description

Corrective

This download provides an update for tools packaged with IBM Rational Application Developer for WebSphere Software to address the vulnerability outlined in the following security bulletin:

Security Bulletin: Cross-Site Scripting Vulnerability with the UML Vizualization tools

Back to top

Click the link in the Download Options column:

On
[{"DNLabel":"Rational-RAD85-CVE-2015-7439-ifix","DNDate":"07 Mar 2016","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=All&platform=All&function=fixId&fixids=Rational-RAD85-CVE-2015-7439-ifix&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"Rational-RAD90-CVE-2015-7439-ifix","DNDate":"07 Mar 2016","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=All&platform=All&function=fixId&fixids=Rational-RAD90-CVE-2015-7439-ifix&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"Rational-RAD91-CVE-2015-7439-ifix","DNDate":"07 Mar 2016","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=All&platform=All&function=fixId&fixids=Rational-RAD91-CVE-2015-7439-ifix&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"Rational-RAD95-CVE-2015-7439-ifix","DNDate":"07 Mar 2016","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=All&platform=All&function=fixId&fixids=Rational-RAD95-CVE-2015-7439-ifix&includeSupersedes=0","DNURL_FTP":" ","DDURL":null}]
[{"Product":{"code":"SSRTLW","label":"Rational Application Developer for WebSphere Software"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General Information","Platform":[{"code":"PF016","label":"Linux"},{"code":"PF022","label":"OS X"},{"code":"PF033","label":"Windows"}],"Version":"8.5;8.5.1;8.5.5;8.5.5.1;8.5.5.2;8.5.5.3;9.0;9.0.1;9.0.1.1;9.0.1.2;9.1;9.1.0.1;9.1.1;9.1.1.1;9.5;9.5.0.1","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
04 February 2020

UID

swg24041862

Page Feedback