CVE-2015-4963 Information

Description

IBM Security Access Manager for Web 7.x before 7.0.0.16 and 8.x before 8.0.1.3 mishandles WebSEAL HTTPTransformation requests which allows remote attackers to read or write to arbitrary files via unspecified vectors.

Reference

http://www.securitytracker.com/id/1034103 http://www-01.ibm.com/support/docview.wss?uid=swg1IV71196 http://www-01.ibm.com/support/docview.wss?uid=swg21964828