Security Update: Maximo update for potential security exposure with IBM HTTP Server

Written by Chon Neth, Editor-in-Chief

Maximo products using WebShere and IBM HTTP Server are exposed to potential security exploit (PM46234) (CVE-2011-3192).

This exploit allows HTTP requests using byte ranges to contain ranges larger than the size of the file being served. Performing a significant number of these requests can result in a denial of service.

All customers using IBM HTTP Server should review the following IBM HTTP Server Flash for the most up-to date information:

http://www.ibm.com/support/docview.wss?uid=swg21512087&myns=swgws&mynp=OCSSCKBL&mynp=OCSS7K4U&mynp=OCSSEQTJ&mync=E

To determine the version of software you are using, log into the WebSphere administrative console and view the Welcome page.

To review the table for product version association information, click here [IBM Support]

Did You Know...

As Maximo Experts, we have developed several add-on products for Maximo that mobilize the work force, simplifies assignments, provides ad-hoc reporting capabilities and facilitates the seamless integration of Service Requests into Maximo.

Check out our products by clicking on the following links: EZMaxMobile, EZMaxPlanner and EZMaxRequest.

Find Out More

Leave a Reply