製品・ソフトウェアに関する情報

JVN脆弱性詳細

IBM Rational Service Tester および Rational Performance Tester における任意のファイルを読まれる脆弱性

Title	IBM Rational Service Tester および Rational Performance Tester における任意のファイルを読まれる脆弱性
Summary	IBM Rational Service Tester および Rational Performance Tester には、任意のファイルを読まれる脆弱性が存在します。
Possible impacts	第三者により、任意のファイルを読まれる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Nov. 19, 2013, midnight
Registration Date	Nov. 27, 2013, 9:50 a.m.
Last Update	Nov. 27, 2013, 9:50 a.m.

Affected System

IBM

IBM Rational Performance Tester 8.3.x

IBM Rational Performance Tester 8.5.1 未満の 8.5.x

IBM Rational Service Tester 8.3.x

IBM Rational Service Tester 8.5.1 未満の 8.5.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2013-6312	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6312
National Vulnerability Database (NVD)
2	CVE-2013-6312	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6312

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
IBM Support Document
1	1655814	http://www-01.ibm.com/support/docview.wss?uid=swg21655814
2	1655815	http://www-01.ibm.com/support/docview.wss?uid=swg21655815

Change Log

No	Changed Details	Date of change
0	[2013年11月27日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2013-6312

Summary	Unspecified vulnerability in IBM Rational Service Tester 8.3.x and 8.5.x before 8.5.1 and Rational Performance Tester 8.3.x and 8.5.x before 8.5.1 allows remote attackers to read arbitrary files via unknown vectors.
Publication Date	Nov. 23, 2013, 4:55 a.m.
Registration Date	Jan. 26, 2021, 3:47 p.m.
Last Update	Nov. 21, 2024, 10:58 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.3:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0.1:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0.2:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.1:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.2:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:ibm:rational_service_tester:8.5.0.2:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.5.0.1:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.1:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.2:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.3:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.5.0:::::::*

Related information, measures and tools

No	URL	タグ
1	http://www-01.ibm.com/support/docview.wss?uid=swg21655814	Vendor Advisory
2	http://www-01.ibm.com/support/docview.wss?uid=swg21655814	Vendor Advisory
3	http://www-01.ibm.com/support/docview.wss?uid=swg21655815	Vendor Advisory
4	http://www-01.ibm.com/support/docview.wss?uid=swg21655815	Vendor Advisory
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/88593
6	https://exchange.xforce.ibmcloud.com/vulnerabilities/88593

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.3:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0.1:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0.2:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.1:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0.2:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.5.0:::::::*
cpe:2.3:a:ibm:rational_performance_tester:8.3.0:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:ibm:rational_service_tester:8.5.0.2:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.5.0.1:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.1:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.2:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0.3:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.3.0:::::::*
cpe:2.3:a:ibm:rational_service_tester:8.5.0:::::::*