5 matches found
WebSphere 7.0.0.1 应用服务器WSPolicy信息泄露漏洞
No description provided by source...
CVE-2009-0504
WSPolicy in the Web Services component in IBM WebSphere Application Server WAS 7.0.x before 7.0.0.1 does not properly recognize the IDAssertion.isUsed binding property, which allows local users to discover a password by reading a SOAP message...
Default credentials
WSPolicy in the Web Services component in IBM WebSphere Application Server WAS 7.0.x before 7.0.0.1 does not properly recognize the IDAssertion.isUsed binding property, which allows local users to discover a password by reading a SOAP message...
CVE-2009-0504
The CVE-2009-0504 issue affects IBM WebSphere Application Server 7.0.x (Web Services/WSPolicy). Before version 7.0.0.1, WSPolicy does not correctly recognize IDAssertion.isUsed, enabling local users to read a SOAP message and discover a password. The NVD entry notes a LOW impact with LOCAL access...
CVE-2009-0504
WSPolicy in the Web Services component in IBM WebSphere Application Server WAS 7.0.x before 7.0.0.1 does not properly recognize the IDAssertion.isUsed binding property, which allows local users to discover a password by reading a SOAP message...