CVE-2016-0206

Description

IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow down for a short period of time by using a specially crafted and malformed URL.

Affected products

• IBM Corporation / Cloud Orchestrator2.2 – 2.2
• IBM Corporation / Cloud Orchestrator2.2.0.1 – 2.2.0.1
• IBM Corporation / Cloud Orchestrator2.3 – 2.3
• IBM Corporation / Cloud Orchestrator2.4 – 2.4
• IBM Corporation / Cloud Orchestrator2.3.0.1 – 2.3.0.1
• IBM Corporation / Cloud Orchestrator2.4.0.1 – 2.4.0.1
• IBM Corporation / Cloud Orchestrator2.4.0.2 – 2.4.0.2
• IBM Corporation / Cloud Orchestrator2.5 – 2.5
• IBM Corporation / Cloud Orchestrator2.5.0.1 – 2.5.0.1
• IBM Corporation / Cloud Orchestrator2.4.0.3 – 2.4.0.3
• IBM Corporation / Cloud Orchestrator2.5.0.2 – 2.5.0.2

References

• MISChttp://www.ibm.com/support/docview.wss?uid=swg2C1000141
• MISChttp://www.securityfocus.com/bid/94656