Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2014.1281 Security vulnerabilities in Rational Software Architect Design Manager and Rational Rhapsody Design Manager (CVE-2014-0947 , CVE-2014-0948 ) 31 July 2014 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: IBM Rational Software Architect Design Manager Publisher: IBM Operating System: AIX Linux variants Solaris Windows Impact/Access: Execute Arbitrary Code/Commands -- Existing Account Create Arbitrary Files -- Existing Account Resolution: Patch/Upgrade CVE Names: CVE-2014-0948 CVE-2014-0947 Original Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21678323 - --------------------------BEGIN INCLUDED TEXT-------------------- Security vulnerabilities in Rational Software Architect Design Manager and Rational Rhapsody Design Manager (CVE-2014-0947 , CVE-2014-0948 ) Security Bulletin Document information More support for: Rational Software Architect Design Manager General Information Software version: 3.0, 3.0.0.1, 3.0.1, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6 Operating system(s): AIX, Linux, Solaris, Windows Reference #: 1678323 Modified date: 2014-07-18 Summary Security vulnerabilities have been identified in Rational Software Architect Design Manager and Rational Rhapsody Design Manager. The exposure would allow a remote attacker to execute arbitrary code on the server. Vulnerability Details CVE ID: CVE-2014-0947 Description: An unidentified vulnerability in Rational Software Architect Design Manager allows an authenticated user to provision an arbitrary update site into the Design Manager server code. This vulnerability exists only in Rational Software Architect Design Manager version 4.0.6. CVSS Base Score: 6 CVSS Temporal Score: See http://xforce.iss.net/xforce/xfdb/92620 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (AV:N/AC:M/Au:S/C:P/I:P/A:P) CVE ID: CVE-2014-0948 Description: An unidentified vulnerability in Rational Software Architect Design Manager and Rational Rhapsody Design Manager allows a remote attacker to upload malicious .zip files, and arbitrarily plant attack files on the system. CVSS Base Score: 6 CVSS Temporal Score: See http://xforce.iss.net/xforce/xfdb/92621 for the current score CVSS Environmental Score*: Undefined CVSS Vector: (AV:N/AC:M/Au:S/C:P/I:P/A:P) Affected Products and Versions Rational Software Architect Design Manager 3.0, 3.0.0.1, 3.0.1 Rational Software Architect Design Manager 4.0 - 4.0.6 Rational Rhapsody Design Manager 3.0, 3.0.0.1, 3.0.1 Rational Rhapsody Design Manager 4.0 - 4.0.6 Remediation/Fixes For Rational Software Architect Design Manager versions 3.0 - 4.0.6: Upgrade to Rational Software Architect Design Manager 4.0.7 or Upgrade to Rational Software Architect Design Manager 5.0 For Rhapsody Design Manager versions 3.0 - 4.0.6: Upgrade to Rational Rhapsody Design Manager 4.0.7 or Upgrade to Rational Rhapsody Design Manager 5.0 For the 3.x releases of Rational Software Architect Design Manager and Rhapsody Design Manager, customers who cannot upgrade to 4.0.7 or 5.0, please contact IBM support for guidance. Workarounds and Mitigations None References Complete CVSS Guide On-line Calculator V2 Related information IBM Secure Engineering Web Portal IBM Product Security Incident Response Blog Acknowledgement None Change History * 18 July 2014: Original copy published *The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin. Disclaimer According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES "AS IS" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY. Cross reference information Segment Product Platform Version Software Development Rational Rhapsody Linux, Windows 3.0, 3.0.0.1, 3.0.1, Design Manager 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6 - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBU9rk3BLndAQH1ShLAQLxmQ//ZC3dVtG19rgSoEyp97v21dVsgoegCCrJ XVGla/QTwxlYqt5ypqoTKL7mazZjXCFFNAl4Qr4bZYGQ5BHw1C30ZaE/ZBbfJydZ 3C+1o6SLWH3DYvl4NEdjsIn19ncNs5op26bjDTn31SdCYm+NIEb1P/8pfZrACnGW AwCfZ9tMBps6WseSxH2ubEzRhLxh6t8SUjIcyfJ4qlH8WmXrpR91L8eQc9/C8Bu2 ArjOc30f3tCQlpLRjHhWxRws1gRDIqARx9HUd9RhYF2/ezgjP8gkudpJ1qUln1qa koWHJ/df2pLcBk8iHlQTBPw4GfzNbnPZoUiGeTHSs9HLP23JJWJJzDR3dc5XfA9S jYOhBMpbyrEHeaBN1AipPM0TkFXzuomEC5z37MknK+CrMGEqqijnrPeKuT/JbVF9 BuD0J6eq/kRXtOLqs+OnmyLVZscifDeZ1dq+6Z0rwJgL5gE5Nzs8Owg7+0XGf0i3 vrws9DpicPO0G+iQcdYMnxCJXFWHGUFf9cdgsfF5iloKbfbAvt6Y++0/RWdaMu61 KfyTJLJiwFyEtyEH8PFFXxVOHtakFB84IzqdOOaHw8fUs9U0EpZdr5CK4UyDgbla MERSgwGGFfJUso2iqi55CuK+8qCSiTaglDdQ2UxpcvlnwLJVoV2lNKK/DQwNWPqi UvHaxlxDO+s= =5JWF -----END PGP SIGNATURE-----