IBM WebSphere Application Server for z/OS CBIND检查绕过漏洞

CVE ID: CVE-2012-3311 IBM WebSphere Application Server WAS是由IBM遵照开放标准开发并发行的一种应用服务器。 IBM WebSphere Application Server for z/OS 8.5、8.0-8.0.0.4、7.0-7.0.0.23、6.1.0-6.1.0.43版本在执行CBIND检查时存在错误，成功利用后可绕过某些安全限制，访问或修改非法应用数据。 0 IBM Websphere Application Server 8.5.x IBM Websphere Application Server 8.0.x IB...

CVE-2012-3311

IBM WebSphere Application Server WAS 6.1 before 6.1.0.45, 7.0 before 7.0.0.25, 8.0 before 8.0.0.5, and 8.5 before 8.5.0.1 on z/OS, in certain configurations involving Federated Repositories for IIOP connections and Optimized Local Adapters, does not perform CBIND checks, which allows local users ...

CVE-2012-3311

Summary of the IBM WebSphere Application Server (WAS) vulnerabilities (CVE-2012-2159 to CVE-2012-4853) and fixes: WAS versions 6.1, 7.0, 8.0, and 8.5 (including Liberty profile) are affected by multiple issues across the Administrative Console, IIOP/CBIND handling on z/OS, proxy server requests, ...