CVE-2014-0904 Information

Description

The update process in IBM Security AppScan Standard 7.9 through 8.8 does not require integrity checks of downloaded files which allows remote attackers to execute arbitrary code via a crafted file.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21666775 https://exchange.xforce.ibmcloud.com/vulnerabilities/91536