Vigil@nce: WebSphere AS 6.0.2, several vulnerabilities
September 2009 by Vigil@nce
Several vulnerabilities of WebSphere AS can be used to attack the
service.
– Severity: 2/4
– Consequences: user access/rights, denial of service of service
– Provenance: internet client
– Means of attack: no proof of concept, no attack
– Ability of attacker: expert (4/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Number of vulnerabilities in this bulletin: 3
– Creation date: 01/09/2009
IMPACTED PRODUCTS
– IBM WebSphere Application Server
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in WebSphere Application
Server.
An unknown vulnerability has the reference PK87408. [grav:2/4;
PK87408]
An unknown vulnerability has the reference PK83521. [grav:2/4;
PK83521]
An unknown vulnerability has the reference PK82424. [grav:2/4;
PK82424]
CHARACTERISTICS
– Identifiers: PK82424, PK83521, PK87408, VIGILANCE-VUL-8991
– Url: http://vigilance.fr/vulnerability/WebSphere-AS-6-0-2-several-vulnerabilities-8991