Security Bulletin: Potential Security Vulnerabilities fixed in IBM WebSphere Application Server 8.5.5.5

Summary Cross reference list for security vulnerabilites fixed in IBM WebSphere Application Server 8.5.5.5, IBM WebSphere Application Server Hypervisor 8.5.5.5 and IBM HTTP Server 8.5.5.5 Vulnerability Details CVEID:CVE-2015-0174APAR PI21072 DESCRIPTION: IBM WebSphere Application Server using SNM...

Security Bulletin: WebSphere Application Server Edge Caching Proxy may be vulnerable to HTTP response splitting (CVE-2017-1503)

Summary The Edge Caching Proxy component of WebSphere Application Server may be vulnerable to HTTP response splitting attack. This is a separate install from WebSphere Application Server. You only need to apply this if you use the Edge Caching Proxy. Vulnerability Details CVEID: CVE-2017-1503...

What’s the difference between a CDN and a Web Accelerator❓

A Content Delivery Network CDN is a network of servers that deliver static assets to the end-user, while a Web Accelerator is another way of saying a CDN with a different name. The CDN is a network that has, as its primary function, optimizing access to content that is in demand, usually in the...

February 9, 2016 — KB3135174 (OS Build 10240.16683)

February 9, 2016 — KB3135174 OS Build 10240.16683 This update includes quality improvements and security fixes. No new operating system features are being introduced this month. Key changes in this update include: Improved installation time of updates. Fixed issue with Microsoft Edge browser...

Security Bulletin: Multiple security vulnerabilities in GSKit used by Edge Caching proxy of WebSphere Application Server

Summary There are multiple security vulnerabilities in the GSKit used by Edge Caching proxy of WebSphere Application Server. This is a separate install from WebSphere Application Server. You only need to apply this if you use the Edge Caching Proxy. Vulnerability Details CVEID: CVE-2018-1447...

February 9, 2016 — KB3135173 (OS Build 10586.104)

February 9, 2016 — KB3135173 OS Build 10586.104 This update includes quality improvements and security fixes. No new operating system features are being introduced this month. Key changes in this update include: Fixed issues with authentication, update installation, and operating system...

Security Bulletin: WebSphere Application Server shipped with Jazz for Service Management(JazzSM) Edge Caching Proxy may be vulnerable to HTTP response splitting (CVE-2017-1503)

Summary The Edge Caching Proxy component of WebSphere Application Server may be vulnerable to HTTP response splitting attack. This is a separate install from WebSphere Application Server. You only need to apply this if you use the Edge Caching Proxy. Vulnerability Details CVEID: CVE-2017-1503...

CVE-2015-5004

The Edge Component Caching Proxy in IBM WebSphere Application Server WAS 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain sensitive information via unspecified vectors...