IBM Maximo Asset Management Multiple Vulnerabilities


Description   (#Several vulnerabilities were reported in IBM Maximo Asset Management :#- CVE-2017-1291: HTTP Response Splitting vulnerability. A remote attacker could exploit it by enticing their victim into following a specially crafted link in order to cause the server to return a split response##- CVE-2017-1292: information disclosure when generating error messages.##No further information is available.)
     
Vulnerable Products   Vulnerable Software:
Maximo Asset Management (IBM) - 7.5, 7.5.0.0, 7.5.0.1, 7.5.0.10, 7.5.0.11, ..., 7.6.0.3, 7.6.0.4, 7.6.0.5, 7.6.0.6, 7.6.0.7
     
Solution   - 7.5.0: 7.5.0.11-TIV-MBS-IFIX004.
     
CVE   CVE-2017-1292
CVE-2017-1291
     
References   - IBM : Maximo Asset Management is vulnerable to HTTP response splitting attacks (CVE-2017-1291)
http://www-01.ibm.com/support/docview.wss?uid=swg22003413
- IBM : Maximo Asset Management generates error messages that could reveal sensitive information that could be used in further attacks against the system (CVE-2017-1292)
http://www-01.ibm.com/support/docview.wss?uid=swg22003414
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
HTTP Request Smuggling : HTTP command found in header
3.2.0
HTTP Response Splitting : suspicious Content-Length in URL
3.2.0
HTTP Response Splitting : suspicious HTTP/1.x in URL
3.2.0
HTTP Request Smuggling : Content-Length and Transfer-Encoding: chunked fields in header
3.2.0
HTTP Response Splitting : suspicious Set-Cookie in URL
3.2.0
HTTP Request Smuggling : suspicious syntax using HTTP keyword
3.2.0
HTTP Request Smuggling : multiple Content-Length fields
3.2.0
HTTP Response Splitting : suspicious Content-Type in URL
3.5.0
     


 
 
 
 
 Risk level 
Moderate 

 Vulnerability First Public Report Date 
2017-05-23 

 Target Type 
Client 

 Possible exploit 
Remote