| VID |
22564 |
| Severity |
30 |
| Port |
8880, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
IBM WebSphere Application Server 6.1 before Fix Pack 45 appears to be running on the remote host and is potentially affected by the following vulnerabilities :
- An error exists related to 'Application Snoop Servlet' and missing access controls. This error can allow sensitive information to be disclosed. Note that exploiting this issue requires that the default'Application Snoop Servlet' be installed and running. (CVE-2012-2170, PM56183)
- Several errors exist related to SSL/TLS that can allow an attacker to carry out denial of service attacks against the application. (CVE-2012-2190, CVE-2012-2191, PM66218)
- Unspecified cross-site scripting issues exist related to the administrative console. (CVE-2012-3293, PM60839)
- An unspecified error in the 'ISC Console' can allow a remote attacker to take over a valid user's session. (CVE-2012-3304, PM54356)
- An unspecified directory traversal error exists that can allow remote attackers to overwrite files outside the application's deployment directory. (CVE-2012-3305, PM62467)
- When multi-domain support is enabled, the application does not properly purge passwords from the authentication cache. (CVE-2012-3306, PM66514)
- An error exists related to 'Federated Repositories', 'IIOP' connections, 'CBIND' checking and 'Optimized Local Adapters' that can allow a remote attacker to bypass security restrictions. Note that this issue affects the application when running on z/OS. (CVE-2012-3311, PM61388)
- The fix contained in PM44303 contains an error that can allow an authenticated attacker to bypass security restrictions and gain administrative access to the application. (CVE-2012-3325, PM71296)
* Note: This check solely relied on the banner of the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www-01.ibm.com/support/docview.wss?uid=swg24033269
http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg27007951#61045
https://www-304.ibm.com/support/docview.wss?uid=swg21611311
* Platforms Affected:
IBM WebSphere Application Server versions 6.1 prior to 6.1 Fix Pack 45 |
| Recommendation |
Upgrade to the latest version of IBM WebSphere Application Server 6.1 (Fix Pack 45 for 6.1 (6.1.0.45) or later), available from the IBM Support & downloads Web site at http://www-01.ibm.com/support/docview.wss?uid=swg24033269 |
| Related URL |
CVE-2012-2170,CVE-2012-2190,CVE-2012-2191,CVE-2012-3293,CVE-2012-3304,CVE-2012-3305,CVE-2012-3306,CVE-2012-3311,CVE-2012-3325 (CVE) |
| Related URL |
53755,54743,55149,55185,55309,55671,55678 (SecurityFocus) |
| Related URL |
(ISS) |
|
