Microsoft Windows Print Spooler Local Information Disclosure Vulnerability

Description Microsoft Windows Messenger is prone to a local information-disclosure vulnerability that affects the Print Spooler service. Successfully exploiting this issue allows attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Avaya Messaging...

CVE-2009-1953

IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server WAS and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF configuration, does not properly restrict use of a cached Subject, which allows remote attackers to...

Design/Logic Flaw

IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server WAS and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF configuration, does not properly restrict use of a cached Subject, which allows remote attackers to...

CVE-2009-1953

IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server WAS and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF configuration, does not properly restrict use of a cached Subject, which allows remote attackers to...

CVE-2009-1953

IBM FileNet Content Manager versions 4.0, 4.0.1, and 4.5 (as used in IBM WebSphere Application Server and Oracle BEA WebLogic) are affected. The CE Web Services listener, under a specific WSEAF configuration, does not properly constrain a cached Subject, enabling remote attackers to access creden...

CVE-2009-1898

The secure login page in the Administrative Console component in IBM WebSphere Application Server WAS 6.0.2 before 6.0.2.35 does not redirect to an https page upon receiving an http request, which makes it easier for remote attackers to read the contents of WAS sessions by sniffing the network...

Code injection

Unspecified vulnerability in the Administrative Configservice API in the System Management/Repository component in IBM WebSphere Application Server WAS 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5 on z/OS allows remote authenticated users to obtain sensitive information via...

CVE-2009-1899

Unspecified vulnerability in the Administrative Configservice API in the System Management/Repository component in IBM WebSphere Application Server WAS 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5 on z/OS allows remote authenticated users to obtain sensitive information via...

CVE-2009-1901

The Security component in IBM WebSphere Application Server WAS 6.0.2 before 6.0.2.35 permits "non-standard http methods," which has unknown impact and remote attack vectors...

CVE-2009-1899

Unspecified vulnerability in the Administrative Configservice API in the System Management/Repository component in IBM WebSphere Application Server WAS 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5 on z/OS allows remote authenticated users to obtain sensitive information via...

CVE-2009-1899

The CVE-2009-1899 issue affects IBM WebSphere Application Server (WAS) on z/OS, specifically WAS versions 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5. It is an unspecified vulnerability in the Administrative Configservice API within the System Management/Repository componen...

CVE-2009-1900

The CVE-2009-1900 issue affects IBM WebSphere Application Server’s Administrative Console Configservice APIs. When tracing is enabled, the wsadmin scripting interface could leak sensitive information to remote attackers. Affected products/versions include WAS 6.0.2 before 6.0.2.35, WAS 6.1 before...

CVE-2009-1898

CVE-2009-1898 affects IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.35. The issue is that the secure login page in the Administrative Console does not redirect HTTP requests to HTTPS, enabling a remote attacker to read session contents by sniffing network traffic. Connected sources co...

CVE-2009-1901

Affected software: IBM WebSphere Application Server (WAS) 6.0.2 prior to 6.0.2.35. Vulnerability: The Security component permits implementation of non-standard HTTP methods. Root cause / impact: Described as enabling non-standard HTTP methods with unknown impact and remote attack vectors in the p...

CVE-2009-0899

IBM WebSphere products (WAS 6.1.x up to 6.1.0.24, WAS 7.0 up to 7.0.0.4, WebSphere Portal Server 5.1–6.0, and IBM Integrated Solutions Console 6.0.1) are affected by CVE-2009-0899 due to improper setting of IsSecurityEnabled during migration from WebSphere Member Manager (WMM) to Virtual Member M...

IBM WebSphere Application Server < 6.0.2.35 Multiple Vulnerabilities

IBM WebSphere Application Server 6.0.2 before Fix Pack 35 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities : - Non-standard HTTP methods are allowed. PK73246 - A login using the LPTAToken cookie may result in extending LTPAToken expiration...

CSRF attack message thrown when JSESSIONID is changed

Symptoms: Anything that is using DWR will fail. Meaning: page editor is fully or partially unusable and it may display the text "Draft saving timed out" on top of the text area. At the same time, the following error messages are printed in the Confluence log: noformat 2009-05-15 08:06:36,011 ERRO...

Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting

Overview Sun GlassFish Enterprise Server and Sun Java System Application Server from Sun Microsystems contain a cross-site scripting vulnerability. Sun GlassFish Enterprise Server and Sun Java System Application Server are application servers from Sun Microsystems. Sun GlassFish Enterprise Server...

Oracle Application Server Spy Servlet SID Enumeration

This module makes a request to the Oracle Application Server in an attempt to discover the SID. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle Application Server Spy Servlet SID...

Update Protection against Oracle Application Server (Oracle AS) Portal Cross Site Scripting

Oracle AS Portal is a Web-based application for building and deploying portals. A vulnerability has been identified in Oracle Application Server that could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the...