Unrated severityNVD Advisory· Published Jan 19, 2012· Updated Apr 29, 2026

CVE-2011-1389

Description

Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-4135.

Affected products

IBM/Rational License Key Server4 versions
cpe:2.3:a:ibm:rational_license_key_server:8.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_license_key_server:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_key_server:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_key_server:8.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_key_server:8.1.2:*:*:*:*:*:*:*
IBM/Rational License Server3 versions
cpe:2.3:a:ibm:rational_license_server:7.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:rational_license_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_server:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_server:7.5:*:*:*:*:*:*:*
IBM/Telelogic License Server
cpe:2.3:a:ibm:telelogic_license_server:2.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/docview.wssnvdPatchVendor Advisory
secunia.com/advisories/47522nvdVendor Advisory
secunia.com/advisories/47524nvdVendor Advisory
kb.flexerasoftware.com/selfservice/microsites/search.donvd
www.flexerasoftware.com/pl/13057.htmnvd
www.securityfocus.com/bid/49191nvd
www.zerodayinitiative.com/advisories/ZDI-11-272/nvd
exchange.xforce.ibmcloud.com/vulnerabilities/71739nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000