CVE-2009-2092

2009-08-13T18:30:00
ID CVE-2009-2092
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:30:00

Description

IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.5 does not properly read the portletServingEnabled parameter in ibm-portlet-ext.xmi, which allows remote attackers to bypass intended access restrictions via unknown vectors.