IBM Cúram Social Program Management CVE-2016-6111 XML External Entity Injection Vulnerability

IBM Cúram Social Program Management is prone to an XML External Entity injection vulnerability.

Attackers can exploit this issue to gain access to sensitive information or cause denial-of-service condition.

Following product versions are affected:

IBM Cúram Social Program Management 7.0.0.0 through 7.0.0.0
IBM Cúram Social Program Management 6.2.0.0 through 6.2.0.3
IBM Cúram Social Program Management 6.1.1.0 through 6.1.1.3
IBM Cúram Social Program Management 6.1.0.0 through 6.1.0.3
IBM Cúram Social Program Management 6.0.5.0 through 6.0.5.9
IBM Cúram Social Program Management 6.0.4.0 through 6.0.4.8
IBM Cúram Social Program Management 6.0.0.0 through 6.0.0 SP2
IBM Cúram Social Program Management 5.2.0.0 through 5.2.0 SP6


 

Privacy Statement
Copyright 2010, SecurityFocus