Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2019.2454 IBM Tivoli Netcool Impact Session Management - Session Fixation 4 July 2019 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: Tivoli Netcool/Impact Publisher: IBM Operating System: Linux variants AIX Solaris Windows Impact/Access: Provide Misleading Information -- Existing Account Resolution: Patch/Upgrade Original Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10957961 - --------------------------BEGIN INCLUDED TEXT-------------------- IBM Tivoli Netcool Impact Session Management - Session Fixation Product: Tivoli Netcool/Impact Software version: 7.1.0 Operating system(s): AIX, Linux, Solaris, Windows Software edition: All Editions Reference #: 0957961 Security Bulletin Summary IBM Tivoli Netcool Impact did not implement proper Session Management. The attacker can fix the users session and lure the victim to login with the Arbitrary session he created, further results into Session hijacking. Vulnerability Details CVEID: Not Applicable DESCRIPTION: No CVE description. CVSS Base Score: 3.5 CVSS Temporal Score: See Not Applicable for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) Affected Products and Versions +----------------------------------------------+----------------------------------------------+ |Affected IBM Tivoli Netcool Impact |Affected Versions | +----------------------------------------------+----------------------------------------------+ |IBM Tivoli Netcool Impact 7.1.0 |7.1.0.0 ~ 7.1.0.15 | +----------------------------------------------+----------------------------------------------+ Remediation/Fixes +-----------------------+----------------------+----------------------+-----------------------+ |Product |VRMF |APAR |Remediation / First Fix| +-----------------------+----------------------+----------------------+-----------------------+ |IBM Tivoli Netcool | | |IBM Tivoli Netcool/ | |Impact 7.1.0 |FP16 | |Impact V7.1.0 Fix Pack | | | | |16 | +-----------------------+----------------------+----------------------+-----------------------+ Workarounds and Mitigations None Change History 1 July 2019: Original version published - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: https://www.auscert.org.au/bulletins/ =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBXR2OEmaOgq3Tt24GAQjlaQ/+NK0lFgKQ9oUJxpyxtxhlfJ1xmpliHQM0 UDLwA9dkGhqB/luwyQ2k8/UmfW8WHVVVI6WS1ObuvL/hdbpDeXEralAOyJsCZaHn Z0b8GKj6EshIUrdToHMyR/sg3vlwQfHIbep/4h2XPnBtLGYkESAJCyx0KfUTNYLW rr1XM+mScxI/1obxZo4JKPRirGCeRTWmsGkRdfmenPu76hVAXRf84NmyMo9lPUpG YZ6nZsPaJM4jHJP8u1lgAKFyIIwlfyDdV0DNgk8c2iUvhA60lLEXi8X+wEEr+Vey eHPMlDPKsDMslN3EaYCpGzvVIytsBPXCcAJyqDT7ALOp0ta+ObiJaLJYiMNGOWSi MdM27QuyzVvV+Jcp45W0w1cBOX6pRrbZM4+I4brFdJzubVtfJpctF73YnFJOF5kU PdHlwRhfSv3ecb4C9QbeRTRVyUsfUtvgIPbDMPIExX650qSj+21GISLQsytkQX6N DDCG++rn2iG5Xbum5pwNXh6CkLT5zdYDMuLqlCk07dY9kmYPEhG+y0BUBD4gkxkW cx5VGo/q/fUf75krOaM/haOEPfc4wrmVBBjkorKwOAIu9u8YDSo3BLnwtNtNqQKC uBc2FNtXvCVxLpWcmcQTtrEMidgv38k+k3WR7bqOFlo5xk/YJAC4wtI9t9dijzd7 INbEU56YFPU= =AnLM -----END PGP SIGNATURE-----