CVE-2009-0439

EUVD-2009-0443
Unspecified vulnerability in the queue manager in IBM WebSphere MQ (WMQ) 5.3, 6.0 before 6.0.2.6, and 7.0 before 7.0.0.2 allows local users to gain privileges via vectors related to the (1) setmqaut, (2) dmpmqaut, and (3) dspmqaut authorization commands.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
Affected Products (NVD)
VendorProductVersion
ibmwebsphere_mq
5.3
ibmwebsphere_mq
5.3
ibmwebsphere_mq
5.3.1
ibmwebsphere_mq
6.0.0.0
ibmwebsphere_mq
6.0.1.0
ibmwebsphere_mq
6.0.1.1
ibmwebsphere_mq
6.0.2.0
ibmwebsphere_mq
6.0.2.1
ibmwebsphere_mq
6.0.2.2
ibmwebsphere_mq
6.0.2.3
ibmwebsphere_mq
6.0.2.4
ibmwebsphere_mq
7.0
ibmwebsphere_mq
7.0.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/52297
http://secunia.com/advisories/34034
http://www-01.ibm.com/support/docview.wss?rs=171&uid=swg27006037
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ40824
http://www.securityfocus.com/bid/33857
https://exchange.xforce.ibmcloud.com/vulnerabilities/48529
http://osvdb.org/52297
http://secunia.com/advisories/34034
http://www-01.ibm.com/support/docview.wss?rs=171&uid=swg27006037
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ40824
http://www.securityfocus.com/bid/33857
https://exchange.xforce.ibmcloud.com/vulnerabilities/48529