1. CVE-Search
  2. CVE-2009-1056
ID CVE-2009-1056
Summary IBM Rational AppScan Enterprise before 5.5 FP1 allows remote attackers to read arbitrary exported reports by "forcefully browsing."
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:rational_appscan:5.2:*:enterprise:*:*:*:*:*
    cpe:2.3:a:ibm:rational_appscan:5.2:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_appscan:5.4:*:enterprise:*:*:*:*:*
    cpe:2.3:a:ibm:rational_appscan:5.4:*:enterprise:*:*:*:*:*
CVSS
Base: 5.0 (as of 02-04-2009 - 05:45)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
aixapar PK79991
bid 34163
osvdb 52764
sectrack 1021863
secunia 34349
vupen ADV-2009-0768
Last major update 02-04-2009 - 05:45
Published 24-03-2009 - 14:30
Last modified 02-04-2009 - 05:45
Back to Top