| VID |
22479 |
| Severity |
30 |
| Port |
8880, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
A version of IBM WebSphere Application Server which is older than 7.0.0.3 is running on the host.
IBM WebSphere Application Server 7.0 before Fix Pack 3 appears to be running on the remote host. Such versions are reportedly affected by multiple vulnerabilities.
- Under certain conditions it may be possible to access administrative console user sessions.
- The adminitrative console is affected by a cross-site scripting vulnerability.
- If APAR PK41002 has been applied, then an unspecified vulnerability in JAX-RPC WS-Security component could incorrectly validate 'UsernameToken'.
- Sample applications shipped with IBM WebSphere Application Server are affected by cross-site scripting vulnerabilities.
- Certain files associated with interim fixes for Unix-based versions of IBM WebSphere Application Server are built with insecure file permissions.
- The Web Services Security component is affected by an unspecified security issue in digital-signature specification.
- It may be possible for an attacker to read arbitrary application-specific war files.
* Note: This check solely relied on the banner of the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www-01.ibm.com/support/docview.wss?uid=swg24021073
http://www-01.ibm.com/support/docview.wss?uid=swg1PK67909
http://www-01.ibm.com/support/docview.wss?uid=swg1PK71826
http://www-01.ibm.com/support/docview.wss?uid=swg1PK72435
http://www-01.ibm.com/support/docview.wss?uid=swg27014463#7001
* Platforms Affected:
IBM WebSphere Application Server versions 7.0 prior to 7.0.0.0 |
| Recommendation |
Upgrade to the latest version of IBM WebSphere Application Server (Fix Pack 3 (7.0.0.3) or later), available from the IBM Support & downloads Web site at http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg27004980 |
| Related URL |
CVE-2009-0508,CVE-2009-0892,CVE-2009-1172,CVE-2009-1173,CVE-2009-1174 (CVE) |
| Related URL |
34330,34358,34104 (SecurityFocus) |
| Related URL |
(ISS) |
|
