Argument injection vulnerability in the iim: URI handler in IBMIM.exe in IBM Installation Manager 1.3.2 and previous versions, as used in IBM Rational Robot and Rational Team Concert, allows remote malicious users to load arbitrary DLL files via the -vm option, as demonstrated by a reference to a UNC share pathname.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm installation manager 1.3.0 |
||
ibm installation manager 1.2.1 |
||
ibm installation manager 1.3.1 |
||
ibm installation manager 1.0 |
||
ibm installation manager |