IBM WebSphere Application Server Unspecified Vulnerabilities
TITLE: IBM WebSphere Application Server Unspecified Vulnerabilities
CLASS: Unknown
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Dec 18 2006 12:00AM
UPDATE: Jun 18 2007 07:59PM
CREDIT: The vendor disclosed these issues.
VULNERABLE:
IBM Websphere Application Server 6.1 .7NOT VULNERABLE:
IBM Websphere Application Server 6.1 .6
IBM Websphere Application Server 6.1 .5
IBM Websphere Application Server 6.1 .3
IBM Websphere Application Server 6.1 .1
IBM Websphere Application Server 6.1
IBM Websphere Application Server 6.1
IBM Websphere Application Server 6.1
IBM Websphere Application Server 6.1
IBM Websphere Application Server 6.1
Vai alla pagina originale su Security Focus
Discussion
IBM WebSphere Application Server is prone to multiple unspecified vulnerabilities.
Although very little information is known about these issues, some of them may lead to denial-of-service conditions and allow attackers to bypass certain restrictions. We will update this BID as more information emerges.
Versions prior to 6.1.0 Fix Pack 9 are vulnerable to these issues.
Exploit
Attackers can use a browser to exploit these issues.
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
Solution
Solution:
IBM has released an update to address this issue. Please see the references for more information.
References
References:
- Fix Pack 9 (6.1.0.9) (IBM)
- WebSphere Product Page (IBM)