IBM Support

IV60429: SECURITY APAR CVE-2014-0114 APACHE STRUTS 1.X VULNERABILITY AFFECTS IBM ENDPOINT MANAGER FOR REMOTE CONTROL

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • IBM Endpoint Manager for Remote Control versions 9.1.0, 9.0.1,
    and 9.0.0 are affected by vulnerabilities in Apache Struts 1.X
    that is included in IBM Endpoint Manager for Remote Control.
    
    CVE id: CVE-2014-0114
    

Local fix

  • not available
    

Problem summary

  • Users affected
    Server   All
    

Problem conclusion

  • The fix for this APAR is contained in the following maintenance
    packages:
    9.1.0-TIV-IEMRC910-HotFix-IV60429
    9.0.1-TIV-IEMRC901-HotFix-IV60429
    9.0.0-TIV-IEMRC900-HotFix-IV60429
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV60429

  • Reported component name

    TIV EP MGR REM

  • Reported component ID

    5725C43RC

  • Reported release

    910

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-05-14

  • Closed date

    2014-05-28

  • Last modified date

    2014-05-28

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TIV EP MGR REM

  • Fixed component ID

    5725C43RC

Applicable component levels

  • R900 PSY

       UP

  • R910 PSY

       UP



Document information

More support for: IBM BigFix family

Software version: 910

Reference #: IV60429

Modified date: 28 May 2014