IBM Support

PH26083:WebSphere Application Server Code Execution Vulnerability by local users (CVE-2020-4534 CVSS Score 7.8)

Download


Downloadable File

Abstract

WebSphere Application Server Code Execution Vulnerability by local users due to Improper Handling of UNC Paths (CVE-2020-4534 CVSS Score 7.8)

Download Description

PH26083 resolves the following problem:

ERROR DESCRIPTION:
WebSphere Application Server Code Execution Vulnerability by local users due to Improper Handling of UNC Paths (CVE-2020-4534 CVSS Score 7.8).

LOCAL FIX:

PROBLEM SUMMARY:
WebSphere Application Server Code Execution Vulnerability by local users due to Improper Handling of UNC Paths (CVE-2020-4534 CVSS Score 7.8).

PROBLEM CONCLUSION:
WebSphere Application Server Code Execution Vulnerability by local users due to Improper Handling of UNC Paths (CVE-2020-4534 CVSS Score 7.8).

Prerequisites

None

Installation Instructions

Review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V80 Readme 2615
V85 Readme 2633
V90 Readme 2430
V70 Readme 5322

Download Package

DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

8.0.0.15-WS-WAS-IFPH26083 30 July 2020 269406 FC
8.5.5.16-WS-WAS-IFPH26083 30 July 2020 271638 FC
9.0.5.3-WS-WAS-IFPH26083 30 July 2020 271298 FC
7.0.0.45-WS-WAS-IFPH26083 30 July 2020 19416 FC

Problems Solved

PH26083

On

Technical Support

Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).

Document Location

Worldwide

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.45;8.0.0.15;8.5.5.16;8.5.5.17;9.0.5.3;9.0.5.4","Edition":"Base","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]

Document Information

Modified date:
30 July 2020

UID

ibm16254980