IBM Support

JR54295 - Security APAR CVE-2015-7397: Open redirect issue in Aurora starter store

Downloadable files


Abstract

Security APAR CVE-2015-7397: Open redirect issue in Aurora starter store.

Download Description

This fix resolves a security issue in the Aurora starter store where a shopper could be redirected to a malicious site.

Prerequisites

Install the latest WebSphere Commerce Update Installer.
Note: This Interim Fix can be applied by using the Roll Out Update process.

URL LANGUAGE SIZE(Bytes)
WebSphere Commerce Update Installer English 1

Download package

Download RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
What is Fix Central(FC)?
7.0.0.0-WS-WC70Fep5Developer-IFJR54295 18 Dec 2015 English 123388538 FC
7.0.0.0-WS-WC70Fep5Server-IFJR54295 18 Dec 2015 English 67023771 FC
7.0.0.0-WS-WC70Fep6Developer-IFJR54295 18 Dec 2015 English 5586989 FC
7.0.0.0-WS-WC70Fep6Server-IFJR54295 18 Dec 2015 English 4856175 FC
7.0.0.0-WS-WC70Fep7Developer-IFJR54295 18 Dec 2015 English 26996341 FC
7.0.0.0-WS-WC70Fep7Server-IFJR54295 18 Dec 2015 English 28305781 FC
7.0.0.0-WS-WC70Fep8Developer-IFJR54295 18 Dec 2015 English 24721480 FC
7.0.0.0-WS-WC70Fep8Server-IFJR54295 18 Dec 2015 English 24906654 FC

Problems (APARS) fixed
JR54295

Document information

More support for: WebSphere Commerce Enterprise

Software version: 7.0

Operating system(s): AIX, IBM i, Linux, Solaris, Windows

Software edition: All Editions

Reference #: 4041142

Modified date: 2016-01-05