漏洞类别:Local
漏洞等级: 
漏洞信息
IBM MQ is a message oriented middleware that allows independent and non-concurrent applications on a distributed system to communicate with each other.
IBM MQ is affected by a Unauthorized User Access vulnerability which could allow unauthenticated user to access an object using MQOPEN call.
Affected Version:
IBM MQ 8.0.x
IBM MQ 9.0.x Continuous Delivery
IBM MQ 9.0.0.x LTS
QID Detection Logic: (Authenticated)
Operating Sytem: Linux
The QID runs the command "/opt/mqm/bin/dspmqver -v | grep -A3 '^Name'" and "/usr/mqm/bin/dspmqver -v | grep -A3 '^Name'" (for AIX only) to see if the system is running a vulnerable version of IBM MQ or not.
QID Detection Logic (authenticated):
Operating System: Windows
The QID checks if the host is running a vulnerable version of IBM MQ by checking version of the file "bin\dspxmsver.exe". The location of the file is determined via the registry key "HKLM\SOFTWARE\IBM\MQSeries\CurrentVersion" value "FilePath".
漏洞危害
Successful exploitation of the vulnerability will affect the integrity of the system.
解决方案
Please refer to IBM advisory swg22005400 for further information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论