IBM Support

PH04060:Potential Remote code execution vulnerability in WebSphere Application Server (CVE-2018-1904)

Download


Abstract

Potential Remote code execution vulnerability in WebSphere Application Server (CVE-2018-1904)

Download Description

PH04060 resolves the following problem: CVE-2018-1904

ERROR DESCRIPTION: Potential remote code execution vulnerability

  LOCAL FIX: Apply the iFix that contains this APAR.

PROBLEM SUMMARY: Potential remote code execution vulnerability

PROBLEM CONCLUSION: Potential remote code execution vulnerability

Prerequisites

Please download the UpdateInstaller below to install this fix.

URL SIZE(Bytes)
UpdateInstaller 7250000

Installation Instructions

Please review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V70 Readme 5050
V80 Readme 2344
V85 Readme 2372
V90 Readme 2209

 

Download Package

 

DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

7.0.0.45-WS-WAS-IFPH04060 12-07-2018 11103 FC
8.0.0.15-WS-WAS-IFPH04060 12-07-2018 258878 FC
8.5.5.13-WS-WAS-IFPH04060 12-07-2018 261114 FC
9.0.0.8-WS-WAS-IFPH04060 12-10-2018 260594 FC

 

Problems Solved

PH04060

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the support web site, or contact 1-800-IBM-SERV (U.S. only).

Problems (APARS) fixed
PH04060

Document information

More support for: WebSphere Application Server

Component: General

Software version: 7.0.0.45, 8.0.0.15, 8.5.5.13, 8.5.5.14, 9.0.0.8, 9.0.0.9

Operating system(s): AIX, HP-UX, IBM i, Linux, Solaris, Windows, z/OS

Software edition: Base,Network Deployment

Reference #: 0744765

Modified date: 10 December 2018