QwikSec

Security Database

CVE

CWE

Training

CVE-2009-4998

Published: Sep 20, 2010

Modified: Sep 16, 2024

PUBLISHED

Description

The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://download2.boulder.ibm.com/sar/CMA/IMA/00yrk/0/readme-ae351-021.htm

x_refsource_CONFIRM

vendor-advisory

x_refsource_AIXAPAR

http://download2.boulder.ibm.com/sar/CMA/IMA/00y3y/0/readme-4027-P8AE-FP007.htm

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.