2 matches found
Security Bulletin: WebSphere Message Broker and IBM Integration Bus are affected by error handling vulnerability (CVE-2014-6170).
Summary The HTTPInput node of WebSphere Message Broker and IBM Integration Bus can return a soap fault including sensitive information that can be used to conduct an attack on the system. Vulnerability Details CVE- ID : CVE-2014-6170 DESCRIPTION : The HTTPInput node of WebSphere Message Broker an...
CVE-2014-6170
CVE-2014-6170 affects IBM WebSphere Message Broker and IBM Integration Bus. The HTTPInput node can return a SOAP fault that reveals sensitive information, enabling remote attackers to access partial confidential data. Affected products/versions include IBM Integration Bus V9.0, WebSphere Message ...