CVE-2011-1378 Information

Description

IBM WebSphere MQ 6.0 on OpenVMS when the default rights of the MQM group are established does not properly verify User Authorization File (UAF) data which allows local users to kill listener processes and the command server via a control command.

Reference

http://secunia.com/advisories/46837 http://www-01.ibm.com/support/docview.wss?uid=swg1IC78034 https://exchange.xforce.ibmcloud.com/vulnerabilities/71336