CVE-2012-0705

Published: Jan 31, 2013Modified: Apr 29, 2026

7.1

Vector

AV:N/AC:H/Au:S/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

InfoSphere Import Export Manager in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 does not validate unspecified input data, which allows remote authenticated users to execute arbitrary commands via unknown vectors.

Affected (7)

Products: Ibm: Infosphere Information Server, Infosphere Information Server Metabrokers & Bridges

Ibm

2 products

Infosphere Information Server

Infosphere Information Server Metabrokers & Bridges

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Information Server	Version 8.1
Ibm Infosphere Information Server	Version 8.5.0.1
Ibm Infosphere Information Server	Version 8.5.0.2
Ibm Infosphere Information Server	Version 8.5
Ibm Infosphere Information Server	Version 8.7
Ibm Infosphere Information Server	Version 9.1
Ibm Infosphere Information Server Metabrokers & Bridges	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73292

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/73292

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.