Troubleshooting
Problem
Running the z/OS Authorized Code Scanner (zACS) will result in an ABENDS0C1 for SVC 145.
Symptom
*** POTENTIAL VULNERABILITY FOUND IN SVC 00000091 ***
Cause
zACS invokes the IBM z/OS Debugger hook SVC (EQA00SVC) without a debugging session.
Environment
IBM z/OS Authorized Code Scanner
Diagnosing The Problem
Running the z/OS Authorized Code Scanner will result in an ABENDS0C1 for SVC 145. This is the IBM z/OS Debugger hook SVC (EQA00SVC) and is designed to abend if it detects a hook that it did not place. The CVSS score reported by zACS does not apply to this case.
Resolving The Problem
This zACS report does not represent a vulnerability and should be ignored.
Document Location
Worldwide
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSTQWA","label":"IBM Debug for z\/OS"},"ARM Category":[{"code":"a8m0z00000008qpAAA","label":"Debug Tool"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]
Was this topic helpful?
Document Information
Modified date:
15 October 2020
UID
ibm16262495