CVE-2014-4793 Information

Description

IBM WebSphere MQ 8.x before 8.0.0.1 does not properly enforce CHLAUTH rules for blocking client connections in certain circumstances related to the CONNAUTH attribute which allows remote authenticated users to bypass intended queue-manager access restrictions via unspecified vectors.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21685526 https://exchange.xforce.ibmcloud.com/vulnerabilities/95208