4 matches found
IBM WebSphere Application Server Long Filename Information Disclosure Vulnerability
IBM WebSphere Application Server WAS is prone to an information- disclosure vulnerability. Exploiting this issue may allow an attacker to access sensitive information that may aid in further attacks. This issue affects WAS 6.0, 6.1, and 7.0. OpenVAS Vulnerability Test $Id: gbibmwebsphere40277.nas...
IBM WebSphere Application Server Long Filename Information Disclosure Vulnerability (May 2010)
IBM WebSphere Application Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2010-0774
The 1 JAX-RPC WS-Security 1.0 and 2 JAX-WS runtime implementations in IBM WebSphere Application Server WAS 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 do not properly handle WebServices PKCS7 and PKIPath tokens, which allows remote attackers to bypass intended access...
CVE-2010-0774
The CVE-2010-0774 vulnerability affects IBM WebSphere Application Server 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11. The issue arises from improper handling of WebServices PKCS#7 and PKIPath tokens in the JAX-RPC WS-Security 1.0 and JAX-WS runtimes, allowing remote attacker...