IBM WebSphere MQ Remote Buffer Overflow

  • Published: 4 Jun 2009

IBM WebSphere MQ Remote Buffer Overflow

CVE-2009-0896

Share

Type

  • IBM WebSphere MQ Remote Buffer Overflow

Severity

  • High

Affected products

  • WebSphere MQ

Author

  • A Plaskett

Date

  • 2009-06-04

CVE Reference

  • CVE-2009-0896

Read more

MWR InfoSecurity have identified that a number of versions of WebSphere MQ are vulnerable to a security issue due to the incorrect validation of user supplied data. This can lead to a heap overflow vulnerability in the packet handling routines. This vulnerability is associated with the software’s memory allocation code and can result in the overwriting of data on the heap. This vulnerability could be exploited remotely from an unauthenticated perspective in order to execute arbitrary code. Please note that specific MQ security controls can partially mitigate the risk associated with this issue if these have been deployed in an appropriate manner.

Due to the nature of the vulnerability full details will not be provided at the present time so that customers are able to apply the appropriate security patches. However, a full advisory will be released in approximately 3 months time. MWR InfoSecurity customers can obtain further information about the issue by contacting their account manager.

Fixes for the issue can be obtained via the following link:

http://www-01.ibm.com/support/docview.wss?rs=0&uid=swg24023135

Update (2nd Oct 2009): The advisory has now been released and can be downloaded here.