A fix is available
APAR status
Closed as program error.
Error description
Customers using REST services in WebSphere Commerce Version 7 Feature Pack 4 are impacted by security vulnerability in that framework.
Local fix
Problem summary
USERS AFFECTED: WebSphere Commerce users using REST services on v7 Feature Pack 4. PROBLEM ABSTRACT: WebSphere Commerce REST services framework contains security vulnerability. BUSINESS IMPACT: Security vulnerability when using REST services RECOMMENDATION:
Problem conclusion
Issue in the REST framework was resolved ------------------------------------------------------------- The latest available maintenance information can be obtained from the Recommended Fixes for WebSphere Commerce technote: http://www.ibm.com/support/docview.wss?rs=3046&uid=swg21261296
Temporary fix
Comments
APAR Information
APAR number
JR42770
Reported component name
WC DEV PRO ED W
Reported component ID
5724I4100
Reported release
700
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-05-10
Closed date
2012-10-12
Last modified date
2012-10-12
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
WC BUS EDITION
Fixed component ID
5724I3800
Applicable component levels
R700 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSYL","label":"WebSphere Commerce Enterprise"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
12 October 2012