135 matches found
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Tivoli Security Policy Manager (CVE-2016-0385)
Summary IBM WebSphere Application Server is shipped as a component of IBM Tivoli Security Policy Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...
Security Bulletin: security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Tivoli Federated Identity Manager and IBM Tivoli Federated Identity Manager Business Gateway (CVE-2016-0385)
Summary IBM WebSphere Application Server is shipped as a component of IBM Tivoli Security Policy Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...
Security Bulletin: : A security vulnerability has been identified in IBM Websphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2016-0377, CVE-2016-0385)
Summary IBM Websphere Application Server is shipped as a component of IBM Security Access Manager for Enterprise Single Sign-On. Information about a security vulnerability affecting IBM Websphere Application Server has been published in a security bulletin. Vulnerability Details Consult the...
Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Financial Transaction Manager (CVE-2016-0385)
Summary WebSphere Application Server is shipped with Financial Transaction Manager. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes...
Security Bulletin: A potential security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Decision Optimization Center (CVE-2016-0385)
Summary IBM WebSphere Application Server is shipped with IBM ILOG Optimization Decision Manager Enterprise, Developer Edition / IBM Decision Optimization Center. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin...
Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM PureApplication System
Summary IBM WebSphere Application Server patterns are shipped as a component of IBM PureApplication System. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in security bulletins CVE-2016-0377, CVE-2016-0385, CVE-2016-2960, CVE-2016-0718,...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Business Monitor (CVE-2016-0385)
Summary IBM WebSphere Application Server is shipped as a component of IBM Business Monitor. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Consult the security bulletin Security Bulletin: Bypass...
Security Bulletin: Security vulnerabilities have been identified in WebSphere Application Server shipped with WebSphere Remote Server (CVE-2016-3092, CVE-2016-0377, CVE-2016-0385, CVE-2016-2960)
Summary WebSphere Application Server is shipped with WebSphere Remote Server. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...
Multiple vulnerabilities have been identified in WebSphere Application Server shipped with WebSphere Service Registry and Repository (CVE-2016-0377, CVE-2016-0385)
Summary WebSphere Application Server is shipped as a component of WebSphere Service Registry and Repository. Information about security vulnerabilities affecting WebSphere Application Server have been published in two security bulletins. Vulnerability Details Please consult the security bulletins...
Security Bulletin: Security vulnerabilities have been identified in WebSphere Application Server shipped with WebSphere Enterprise Service Bus (CVE-2016-0385, CVE-2016-0377, CVE-2016-2960, CVE-2016-3092)
Summary WebSphere Application Server is shipped as a component of WebSphere Enterprise Service Bus. Information about the security vulnerabilities affecting WebSphere Application Server has been published in security bulletins Vulnerability Details CVEID: CVE-2016-0385 DESCRIPTION: IBM WebSphere...
Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Business Process Manager, WebSphere Process Server, WebSphere Dynamic Process Edition, and WebSphere Lombardi Edition
Summary WebSphere Application Server is shipped as a component of IBM Business Process Manager, WebSphere Process Server, WebSphere Dynamic Process Edition, and WebSphere Lombardi Edition. Information about security vulnerabilities affecting WebSphere Application Server has been published in...
Security Bulletin: Bypass security restrictions in WebSphere Application Server (CVE-2016-0385)
Summary There is a potential bypass security restriction vulnerability in IBM WebSphere Application Server. This will only occur in environments that have the webcontainer custom property HttpSessionIdReuse enabled. Vulnerability Details CVEID: CVE-2016-0385 DESCRIPTION: IBM WebSphere Application...
CVE-2017-0385
An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally...
CVE-2017-0385
CVE-2017-0385 is an elevation-of-privilege vulnerability in Android’s Audioserver that could allow a local attacker to execute arbitrary code in the context of a privileged process. The issue affects Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, and 7.1.1. The connected documents confirm...
CVE-2016-0385
Buffer overflow in IBM WebSphere Application Server WAS 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2016-0385
Summary of CVE-2016-0385 (IBM WebSphere Application Server) Root cause: A buffer overflow in WebSphere Application Server (and related deployments) can be exploited to bypass security restrictions when HttpSessionIdReuse is enabled, potentially allowing an attacker to view sensitive data. The iss...
Oracle: Security Advisory (ELSA-2007-0385)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2013-0219)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-0385
CVE-2015-0385 concerns an unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier, related to Pluggable Auth, that can affect availability. The impact is described as a partial availability loss via unknown vectors with remote authenticated access. Public sources in the connected docu...
Juniper Junos Space < 13.1R1 MySQL Multiple Vulnerabilities (JSA10601)
According to its self-reported version number, the remote Junos Space version is prior to 13.1R1. It is, therefore, affected by multiple vulnerabilities related to the installed MySQL version. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid80193; scriptversion"1.4";...