CVE-2014-0838 Information

Description

The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server.

Reference

http://osvdb.org/102553 http://www.securityfocus.com/bid/65127 http://www-01.ibm.com/support/docview.wss?uid=swg21663066 https://exchange.xforce.ibmcloud.com/vulnerabilities/90681