CVE-2009-0439

Unspecified vulnerability in the queue manager in IBM WebSphere MQ (WMQ) 5.3, 6.0 before 6.0.2.6, and 7.0 before 7.0.0.2 allows local users to gain privileges via vectors related to the (1) setmqaut, (2) dmpmqaut, and (3) dspmqaut authorization commands.

Published: Feb 24, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-0439
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / websphere_mq	7.0.0.1	7.0.0.1.x
ibm / websphere_mq	6.0.1.0	6.0.1.0.x
ibm / websphere_mq	6.0.2.4	6.0.2.4.x
ibm / websphere_mq	6.0.1.1	6.0.1.1.x
ibm / websphere_mq	6.0.0.0	6.0.0.0.x
ibm / websphere_mq	6.0.2.3	6.0.2.3.x
ibm / websphere_mq	6.0.2.1	6.0.2.1.x
ibm / websphere_mq	5.3	5.3.x
ibm / websphere_mq	6.0.2.2	6.0.2.2.x
ibm / websphere_mq	6.0.2.0	6.0.2.0.x
ibm / websphere_mq	5.3.1	5.3.1.x
ibm / websphere_mq	7.0	7.0.x

http://osvdb.org/52297
http://secunia.com/advisories/34034
http://www-01.ibm.com/support/docview.wss?rs=171&uid=swg27006037
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ40824
http://www.securityfocus.com/bid/33857
https://exchange.xforce.ibmcloud.com/vulnerabilities/48529

Vulnerability Database

289,871

CVE-2009-0439