CVE-2015-1886

Severity

78%

Complexity

99%

Confidentiality

115%

The Remote Document Conversion Service (DCS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05 allows remote attackers to cause a denial of service (memory consumption) via crafted requests.

CVSS 2.0 Base Score 7.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:C).

Overview

Type

IBM Websphere Portal

First reported 9 years ago

2015-04-27 11:59:00

Last updated 8 years ago

2016-08-04 03:22:00

Affected Software

IBM Websphere Portal 6.1.0.0

6.1.0.0

IBM Websphere Portal 6.1.0.1

6.1.0.1

IBM Websphere Portal 6.1.0.2

6.1.0.2

IBM Websphere Portal 6.1.0.3

6.1.0.3

IBM Websphere Portal 6.1.0.4

6.1.0.4

IBM Websphere Portal 6.1.0.5

6.1.0.5

IBM Websphere Portal 6.1.0.6

6.1.0.6

IBM Websphere Portal 6.1.5.0

6.1.5.0

IBM Websphere Portal 6.1.5.1

6.1.5.1

IBM Websphere Portal 6.1.5.2

6.1.5.2

IBM Websphere Portal 6.1.5.3

6.1.5.3

IBM Websphere Portal 7.0.0.0

7.0.0.0

IBM Websphere Portal 7.0.0.1

7.0.0.1

IBM Websphere Portal 7.0.0.2

7.0.0.2

IBM Websphere Portal 8.0.0.0

8.0.0.0

IBM Websphere Portal 8.0.0.1

8.0.0.1

IBM Websphere Portal 8.5.0.0

8.5.0.0

References

74216

Third Party Advisory, VDB Entry

1032189